Skip to content

MS SIR #12

like_a_sir Okay, better late than never. I finally got to the latest Microsoft Security Intelligence Report. While usually there is not much unexpected this time I was almost shocked with the first section of the document. And I believe it’s excusable, because it is named…

How Conflicker CONTINUES to propagate.

Conflicker! The three-years-old malware! CONTINUES to be a THREAT! Are we going nuts? =)

60% of people who could have got it (if not for antivirus) have weak admin’s passwords. Also 17 to 42% (XP only) have the vulnerability which is used by the worm. Three years after the patch was issued…

This is crazy word, guys =)

Everything else in the report is not half as thrilling as this:

 

1) HTML/JavaScript exploits are on the rise

2) It seems like document exploiting steadily grows too. Probably sooner or later we’ll see some book reader exploited Winking smile

3) SPAM seems to decline in quantity (at least in this report =) ). What become a surprise for me is the fact that the #1 contributor to the spam flow were emails with content advertising non-sexual pharmacy. Probably I wasn’t interested in the section while reading previous reports. Still it’s very refreshing to find that health is more reliable way to earn money than “enlarging someone’s manhood” =)

4) No surprise in the fact that most successful malware needs user action to be installed. But Conflicker is #6… Like I said – shocking discovery =(