F-Secure: Malware samples doubled in one year
LATEST NEWS
SUBSCRIBE
Computerworld is New Zealand's only specialised information systems fortnightly. Subscribe now for $100 (23 issues) and save more than 37% off the cover price!
SIGN UP
Twice as many malicious software samples have been collected in 2007 than over the last 20 years, says security vendor
By Jeremy Kirk | London | Wednesday, 5 December, 2007
Finnish security vendor F-Secure has collected twice as many malicious software samples this year than it has over the last 20 years, a trend that highlights the growing danger of malicious software on the internet.
Through the end of 2006 and 20 years prior, F-Secure counted a total of 250,000 samples, says Mikko Hypponen, F-Secure's chief research officer. This year alone, 250,000 samples have been counted, he says.
Statistics on malware from antivirus companies can vary since the data is often derived from what their customers experience while using their software, and it depends on how widely that software is used.
But other security vendors have also noted the flood of new malware on the internet over the last few years. Symantec said earlier this year that it detected 212,101 new malicious code threats between January and June, an increased of 185% over the same period a year prior.
The astounding increase shows that hackers "are generating large number of different [malware] variants on purpose to make the lives of antivirus vendors more difficult," Hypponen says.
A variant is a piece of malware that has a unique look but belongs to a known family of malware, sharing common code and functions. Hackers use techniques such as obfuscation, which jumbles up code and makes it hard to determine what the program is, and encryption, to trick security programs.
"Genuine innovation appears to be on the decline and is currently being replaced with volume and mass-produced kit malware," according to F-Secure's report, which covers the second half of 2007.
Higher numbers of malware samples put more pressure on vendors to ensure they have fine-tuned products. To handle the surge, F-Secure has hired more security analysts as well as continued to develop automated tools to evaluate malicious software, Hypponen says.
Any new malware must first undergo an analysis. Then most security software vendors companies create a signature, or an indicator, that allows its software to detect the malware.
Automation makes the task of analysing malware somewhat easier, but "in the end, a human makes the decision where we add detection [signatures]," Hypponen says.
MOST POPULAR
- NZ game industry: Govt support for development increasing
- Raspberry Pi arrives in New Zealand
- Video, connection costs major factors in broadband uptake: ComCom
- Spotify launches in New Zealand and Australia today
- NASA on 'brink of a new future' with SpaceX launch
- No more risk to privacy on Facebook, than web: MED
Social Media @Computerworld NZ
Computerworld NZ has now reached LinkedIn! Join to expand your networks and meet others interested in information systems.
