IT in Manufacturing


Trojans continue to dominate BitDefender’s top 10 e-threats for October

November 2009 IT in Manufacturing

Trojan.Clicker.CM continues its hold as the number one e-threat

The top spot on BitDefender’s top ten list of e-threats for October is once again Trojan.Clicker.CM, which is mostly present on websites hosting illegal applications such as cracks, keygens and serial numbers for popular commercial software applications. It is typically used to force advertisements inside the browser and comprises 9,47% of infected files this month.

Ranking second with 8,54% of the worldwide infections, Trojan.AutorunInf.Gen is a generic mechanism used to spread malware via removable devices such as flash drives, memory cards or external hard-disk drives. Win32.Worm.Downadup si Win32.TDSS are two of the most famous families of malware to use this approach to trigger newer infections.

Win32.Worm.Downadup takes third position with 5,29% of the total amount of infected machines. Also known as Conficker or Kido, the worm restricts access to the websites associated with IT security vendors. More than that, the latest variant of the worm installs rogue security software on the compromised machines.

Trojan.Wimad comes in fourth place with 4,90% of the global infections. It takes advantage of a less-known feature implemented by Microsoft in order to store coordinated digital media data. The Trojan affects ASF files, an extensible file format that supports data delivery over a wide variety of networks and is extremely easy to play back locally. A specially crafted ASF file abuses the feature which allows it to download the appropriate codec in order to install Trojans instead.

Exploit.PDF-JS.Gen, the fifth offender, is a generic detection for specially crafted PDF files that exploit different vulnerabilities found in Adobe PDF Reader's Javascript engine in order to execute malicious code on the user's computer. Upon opening an infected PDF file, a specially crafted Javascript code triggers the download of malicious binaries from remote locations. This threat makes up 4,84% of the worldwide infections.

Win32.Sality.OG takes the sixth position with 2,31% of the infections triggered globally. It is a polymorphic file infector that appends its encrypted code to executable files (.exe and .scr binaries). In order to hide its presence on the infected machine, it deploys a rootkit and attempts to kill antivirus applications installed locally.

The seventh place goes to Trojan.Autorun.AET at 2,20% of global infections, a malicious code spreading via the Windows shared folders, as well as through removable storage devices. The Trojan exploits the Autorun feature implemented in Windows for automatically launching applications when an infected storage device is plugged in.

Worm.Autorun.VHG is an Internet/network worm that exploits the Windows MS08-067 vulnerability in order to execute itself remotely using a specially crafted RPC (remote procedure call) package (an approach also used by Win32.Worm.Downadup). The worm ranks eight with 1,49% of the global infections.

Trojan.Swizzor.6 is yet another variant of the Swizzor family, 'obfuscated' downloaders that would try to save and execute new threats on infected machines. The Trojan adds its key to the Windows Registry in order to execute a copy of itself each time Windows is started. This specific variant of Swizzor accounts for 1,22% of the global infections.

Ranking last in this month’s top 10 E-threats, Gen:Adware.Heur.wq0@j4oukhei scores 1,21% of the global infections. This generic routine detects a wide range of adware applications, especially the NaviPromo family.

BitDefender’s October 2009 Top 10 E-Threat list includes:

1. Trojan.Clicker.CM: 9,47%

2. Trojan.AutorunINF.Gen: 8,54%

3. Win32.Worm.Downadup.Gen: 5,29%

4. Trojan.Wimad.Gen.1: 4,90%

5. Exploit.PDF-JS.Gen: 4,84%

6. Win32.Sality.OG: 2,31%

7. Trojan.Autorun.AET: 2,20%

8. Worm.Autorun.VHG: 1,49%

9. Trojan.Swizzor.6: 1,22%

10. Gen:Adware.Heur.wq0@j4oukhei: 1,21%

Others: 58.53%

For more information contact Alina Anton, senior PR and marketing coordinator, EMEA and APAC Business Unit, +40 212 063 470, [email protected], www.bitdefender.com





Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Optimising the product design process
Siemens South Africa IT in Manufacturing
OPmobility is partnering with Siemens to adopt its Teamcenter X Product Lifecycle Management software. OPmobility’s increasingly complex products now include electronics and software, to create energy storage systems, which include battery and hydrogen electrification solutions and fuel tanks.

Read more...
Smart milling for resilient, sustainable food production
IT in Manufacturing
As the global demand for food continues to rise due to increasing urbanisation, the milling industry faces the challenge of balancing efficiency with sustainability. Bühler is committed to making milling more energy-efficient while maintaining high operational performance. Its solutions allow mills to reduce energy costs and ensure long-term sustainability.

Read more...
The evolving landscape of data centres in the age of AI
Schneider Electric South Africa IT in Manufacturing
The data centre industry is undergoing a period of rapid transformation, driven primarily by the explosive growth of AI. It’s clear that the demands of AI are reshaping the very foundations of data infrastructure. This isn’t merely about incremental upgrades; it’s a fundamental shift in how we design, power and operate these critical facilities.

Read more...
SA Food Review
IT in Manufacturing
Food Review is a monthly trade journal for South Africa’s food and beverage manufacturing industry, for industry professionals seeking detailed information on trends, technologies, best practices and innovations.

Read more...
Keeping an eye on oil consumption with moneo
ifm - South Africa IT in Manufacturing
Manufacturing companies in the metal industry need oils and other fluids that are consumed by their machines. To make this consumption transparent and to establish a link to the ERP system, Arnold Umformtechnik relies on the IIoT platform, moneo, in combination with the SAP-based software solution Shop Floor Integration (SFI) – both from ifm.

Read more...
AI accelerates energy transformation
RJ Connect IT in Manufacturing
With the rapid expansion of generative AI applications, data centre power demand is reaching unprecedented levels.

Read more...
Revolutionising mining operations with MineOptimize
IT in Manufacturing
Now more than ever, mining and mineral processing companies need to boost productivity, ensure safety, and protect the environment. ABB’s comprehensive electrification, automation and digital solutions portfolio is ideally positioned to meet these challenges across all mining processes, from mine to port, transforming performance in a digital world.

Read more...
Buildings in Africa’s urban evolution
Schneider Electric South Africa IT in Manufacturing
Africa is now an urban continent. How does the continent mobilise to accommodate urban dwellers and maintain and implement critical infrastructure that allows for this expansion? Building management systems provide a tangible solution to optimise resource use, lower operations costs and ultimately contribute to a growing continent that also employs green practices.

Read more...
TwinCAT Vision functionality extended
Beckhoff Automation IT in Manufacturing
The image processing and camera integration capabilities of Beckhoff’s TwinCAT 3 Vision software have been expanded.

Read more...
Automation software to future-proof your operations
Adroit Technologies IT in Manufacturing
As the official partner of Mitsubishi Electric Factory Automation, Adroit Technologies empowers businesses with cutting-edge solutions that reduce costs, improve quality and increase productivity.

Read more...