Top Malware Threats - April 2010
Windows security software provider Sunbelt Software today announced the most prevalent malware threats for the month of April, 2010. The report is compiled from monthly scans performed by Sunbelt's VIPRE Antiburs anti-malware solution and its anitspuware tool CounterSpy.
The list of malware detections change little from March to April with the exception of a loader for a rogue security product making it into the top 10. Nine detections from March were still on the list in April. FraudTool.Win32.SecurityTool (v) - a loader for rogue security product SecurityTool - was the one new addition, supplanting Virtumonde in the last spot. Bots and Trojans were the most frequent detections.
One detection with a significant change in April was INF.Autorun (v), which saw its percentage of total detections grow by almost 40 percent, from 1.7% of overall detections in March to 2.34% in April.
Also, Trojan.Win32.Generic!BT, with 33.74 percent share of ThreatNet detections for April (up slightly from 31.07 in March) is indicative of Sunbelt’s continued development of generic detections. Detecting malicious behavior and using “sandbox” testing are two ways that VIPRE stops malicious applications without individual signature updates. The two methods often stop zero-day malicious code – previously unknown malware.
Sunbelt Software Research Center Manager Tom Kelchner said, “The top 10 ThreatNet detections in April are an interesting snapshot of the malicious code landscape we’re seeing and the current response the entire antivirus industry is taking. Trojans and bots are very prevalent. We also have an indication that rogue security products continue to spread and most of our top-10 detections are VIPRE detections or generics.”