IT in Manufacturing


Trojans continue to dominate BitDefender’s top 10 e-threats for October

November 2009 IT in Manufacturing

Trojan.Clicker.CM continues its hold as the number one e-threat

The top spot on BitDefender’s top ten list of e-threats for October is once again Trojan.Clicker.CM, which is mostly present on websites hosting illegal applications such as cracks, keygens and serial numbers for popular commercial software applications. It is typically used to force advertisements inside the browser and comprises 9,47% of infected files this month.

Ranking second with 8,54% of the worldwide infections, Trojan.AutorunInf.Gen is a generic mechanism used to spread malware via removable devices such as flash drives, memory cards or external hard-disk drives. Win32.Worm.Downadup si Win32.TDSS are two of the most famous families of malware to use this approach to trigger newer infections.

Win32.Worm.Downadup takes third position with 5,29% of the total amount of infected machines. Also known as Conficker or Kido, the worm restricts access to the websites associated with IT security vendors. More than that, the latest variant of the worm installs rogue security software on the compromised machines.

Trojan.Wimad comes in fourth place with 4,90% of the global infections. It takes advantage of a less-known feature implemented by Microsoft in order to store coordinated digital media data. The Trojan affects ASF files, an extensible file format that supports data delivery over a wide variety of networks and is extremely easy to play back locally. A specially crafted ASF file abuses the feature which allows it to download the appropriate codec in order to install Trojans instead.

Exploit.PDF-JS.Gen, the fifth offender, is a generic detection for specially crafted PDF files that exploit different vulnerabilities found in Adobe PDF Reader's Javascript engine in order to execute malicious code on the user's computer. Upon opening an infected PDF file, a specially crafted Javascript code triggers the download of malicious binaries from remote locations. This threat makes up 4,84% of the worldwide infections.

Win32.Sality.OG takes the sixth position with 2,31% of the infections triggered globally. It is a polymorphic file infector that appends its encrypted code to executable files (.exe and .scr binaries). In order to hide its presence on the infected machine, it deploys a rootkit and attempts to kill antivirus applications installed locally.

The seventh place goes to Trojan.Autorun.AET at 2,20% of global infections, a malicious code spreading via the Windows shared folders, as well as through removable storage devices. The Trojan exploits the Autorun feature implemented in Windows for automatically launching applications when an infected storage device is plugged in.

Worm.Autorun.VHG is an Internet/network worm that exploits the Windows MS08-067 vulnerability in order to execute itself remotely using a specially crafted RPC (remote procedure call) package (an approach also used by Win32.Worm.Downadup). The worm ranks eight with 1,49% of the global infections.

Trojan.Swizzor.6 is yet another variant of the Swizzor family, 'obfuscated' downloaders that would try to save and execute new threats on infected machines. The Trojan adds its key to the Windows Registry in order to execute a copy of itself each time Windows is started. This specific variant of Swizzor accounts for 1,22% of the global infections.

Ranking last in this month’s top 10 E-threats, Gen:Adware.Heur.wq0@j4oukhei scores 1,21% of the global infections. This generic routine detects a wide range of adware applications, especially the NaviPromo family.

BitDefender’s October 2009 Top 10 E-Threat list includes:

1. Trojan.Clicker.CM: 9,47%

2. Trojan.AutorunINF.Gen: 8,54%

3. Win32.Worm.Downadup.Gen: 5,29%

4. Trojan.Wimad.Gen.1: 4,90%

5. Exploit.PDF-JS.Gen: 4,84%

6. Win32.Sality.OG: 2,31%

7. Trojan.Autorun.AET: 2,20%

8. Worm.Autorun.VHG: 1,49%

9. Trojan.Swizzor.6: 1,22%

10. Gen:Adware.Heur.wq0@j4oukhei: 1,21%

Others: 58.53%

For more information contact Alina Anton, senior PR and marketing coordinator, EMEA and APAC Business Unit, +40 212 063 470, [email protected], www.bitdefender.com





Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

New generative AI-powered maintenance offering
Siemens South Africa IT in Manufacturing
The Siemens Industrial Copilot is revolutionising industry by enabling customers to leverage generative AI across the entire value chain – from design and planning to engineering, operations and services.

Read more...
Building resilience in extreme environments
ACTOM Electrical Machines IT in Manufacturing
Extreme temperatures, corrosive substances and high pressures are just a few of the elements that make up the unforgiving operational environments characteristic of the petrochemical and oil and gas sectors. A proactive and nuanced approach to industrial maintenance is no longer optional for organisations, it is an absolute necessity to avoid disruptions and create the right conditions for success.

Read more...
Next milestone achieved for the Eplan Data Portal
IT in Manufacturing
The Eplan Data Portal offers users access to high-quality product catalogues from a continually growing pool of renowned component manufacturers.

Read more...
AI accelerates energy transformation
RJ Connect IT in Manufacturing
With the rapid expansion of generative AI applications, data centre power demand is reaching unprecedented levels.

Read more...
Optimising the product design process
Siemens South Africa IT in Manufacturing
OPmobility is partnering with Siemens to adopt its Teamcenter X Product Lifecycle Management software. OPmobility’s increasingly complex products now include electronics and software, to create energy storage systems, which include battery and hydrogen electrification solutions and fuel tanks.

Read more...
Smart milling for resilient, sustainable food production
IT in Manufacturing
As the global demand for food continues to rise due to increasing urbanisation, the milling industry faces the challenge of balancing efficiency with sustainability. Bühler is committed to making milling more energy-efficient while maintaining high operational performance. Its solutions allow mills to reduce energy costs and ensure long-term sustainability.

Read more...
The evolving landscape of data centres in the age of AI
Schneider Electric South Africa IT in Manufacturing
The data centre industry is undergoing a period of rapid transformation, driven primarily by the explosive growth of AI. It’s clear that the demands of AI are reshaping the very foundations of data infrastructure. This isn’t merely about incremental upgrades; it’s a fundamental shift in how we design, power and operate these critical facilities.

Read more...
SA Food Review
IT in Manufacturing
Food Review is a monthly trade journal for South Africa’s food and beverage manufacturing industry, for industry professionals seeking detailed information on trends, technologies, best practices and innovations.

Read more...
Keeping an eye on oil consumption with moneo
ifm - South Africa IT in Manufacturing
Manufacturing companies in the metal industry need oils and other fluids that are consumed by their machines. To make this consumption transparent and to establish a link to the ERP system, Arnold Umformtechnik relies on the IIoT platform, moneo, in combination with the SAP-based software solution Shop Floor Integration (SFI) – both from ifm.

Read more...
AI accelerates energy transformation
RJ Connect IT in Manufacturing
With the rapid expansion of generative AI applications, data centre power demand is reaching unprecedented levels.

Read more...