A variety of new internet security threats emerged last month, according to threat statistics collected by web security software firm ESET.
In first place, based on the number of ESET customers attacked, was Win32/TrojanDownloader.Ani.Gen. This threat exploits how Windows handles animated cursor(.ani) files.
During the month of April, close to 5% of all detections were of the Ani.Gen threat, as malware writers made the most of this latest vulnerability in the Windows OS, which Microsoft has now patched.
“This type of attack exposes even fairly sophisticated users to “drive by” attacks that can compromise their computers,” said Randy Abrams, director of education at ESET.
The Win32/PSW.Agent.NCC threat dropped from first place last month to second, accounting for 2.85% of detections during April. This Trojan is part of a family used for stealing passwords through keylogging techniques.
In third place was Win32/Pacex.Gen, a fast spreading mass-mailing worm first discovered during March.
Win32/TrojanDownloader.Agent.AWF was fourth in April, with around 1.80% of detections. This threat is used for downloading other malware from web sites to create botnets that are then used for propagating spam and delivering DDos attacks.
The fifth greatest threat was Win32/Perlovga, a Trojan that has increased its presence during the current year. This threat can be received by users from different sources, like e-mail, FTP or P2P applications. Perlovga is used to collect sensitive information from infected computers.
Top 10 threats for April 2007
- Win32/TrojanDownloader.Ani.Gen – 4.95%
- Win32/PSW.Agent.NCC – 2.85%
- Win32/Pacex.Gen – 2.21%
- TrojanDownloader.Agent.AWF– 1.80%
- Win32/Perlovga – 1.45%
- Win32/Adware.Boran – 1.30%
- Win32/PSW.QQRob – 1.27%
- Win32/Nuwar.gen – 1.18%
- Win32/Netsky.Q – 1.17%
- Win32/Adware.Virtumode – 1.14%
Microsoft patches early Windows ANI zero-day early >>