[iwar] [fc:Hybrid.viruses.set.to.become.bigger.threat]

• Next message: Fred Cohen: "[iwar] [fc:Excite.At.Home.Could.Cease.Service.on.Nov..30]"
• Previous message: B.K. DeLong: "[iwar] Black Hat Windows Sec. Briefings CFP - Deadline 12/15"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Return-Path: <sentto-279987-3961-1006974701-fc=all.net@returns.groups.yahoo.com>
Delivered-To: fc@all.net
Received: from 204.181.12.215 [204.181.12.215] by localhost with POP3 (fetchmail-5.7.4) for fc@localhost (single-drop); Wed, 28 Nov 2001 11:14:08 -0800 (PST)
Received: (qmail 12678 invoked by uid 510); 28 Nov 2001 19:12:08 -0000
Received: from n2.groups.yahoo.com (216.115.96.52) by all.net with SMTP; 28 Nov 2001 19:12:08 -0000
X-eGroups-Return: sentto-279987-3961-1006974701-fc=all.net@returns.groups.yahoo.com
Received: from [10.1.4.54] by n2.groups.yahoo.com with NNFMP; 28 Nov 2001 19:11:44 -0000
X-Sender: fc@red.all.net
X-Apparently-To: iwar@onelist.com
Received: (EGP: mail-8_0_0_1); 28 Nov 2001 19:11:41 -0000
Received: (qmail 21426 invoked from network); 28 Nov 2001 19:11:40 -0000
Received: from unknown (216.115.97.167) by m10.grp.snv.yahoo.com with QMQP; 28 Nov 2001 19:11:40 -0000
Received: from unknown (HELO red.all.net) (65.0.156.78) by mta1.grp.snv.yahoo.com with SMTP; 28 Nov 2001 19:11:42 -0000
Received: (from fc@localhost) by red.all.net (8.11.2/8.11.2) id fASJDWE02174 for iwar@onelist.com; Wed, 28 Nov 2001 11:13:32 -0800
Message-Id: <200111281913.fASJDWE02174@red.all.net>
To: iwar@onelist.com (Information Warfare Mailing List)
Organization: I'm not allowed to say
X-Mailer: don't even ask
X-Mailer: ELM [version 2.5 PL3]
From: Fred Cohen <fc@all.net>
X-Yahoo-Profile: fcallnet
Mailing-List: list iwar@yahoogroups.com; contact iwar-owner@yahoogroups.com
Delivered-To: mailing list iwar@yahoogroups.com
Precedence: bulk
List-Unsubscribe: <mailto:iwar-unsubscribe@yahoogroups.com>
Date: Wed, 28 Nov 2001 11:13:31 -0800 (PST)
Reply-To: iwar@yahoogroups.com
Subject: [iwar] [fc:Hybrid.viruses.set.to.become.bigger.threat]
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 8bit

Hybrid viruses set to become bigger threat
By John Leyden
Posted: 27/11/2001 at 15:29 GMT

Viruses which try to infect users through a variety of means, such as the
infamous Nimda worm, and mass mailers are predicted to become even more of a
problem for Internet users next year.

That's the prediction of anti-virus firm Sophos which has gazed into the
crystal ball and come up with some predictions for the threats we'll see
next year. Here they are:

    * Mass mailing Windows 32 viruses, such as Nimda and SirCam, to become
even more common. Executables have been the most common type of virus
reported to Sophos this year
    * More macro and script viruses, which are easy to write with virus
writing toolkits
    * A increased incidence of Remote Access Trojans or Backdoor Trojan
horses
    * An increase in attacks on Unix systems
    * More Code Red-style Internet worms directly targeting Web servers
    * Combined (or cocktail) attacks, where viruses combine different
spreading techniques and payloads, to become more common
    * The risk that hype about viruses might blind users to possible
problems ('virus fatigue')
    * But little likelihood, according to Sophos, that there will be "an
avalanche of new viruses affecting mobile devices"

Apart from the risk from viruses on handhelds and smartphones, other
antivirus vendors broadly agree with Sophos about coming risks. Symantec is
placing particular emphasis on the risk of viruses which use hybrid modes of
attack (e.g. attacking a firm both through infected email and its Web
server) might pose in the future. A good example of this type of virus is
Nimda.

Virus writers still sex-obsessed nerds not terrorists
Although viruses themselves are getting more sophisticated, virus writers
are not. Sex continues to be a favourite method of tempting users into
infection with the technique becoming, if anything, even more popular.

Graham Cluley, senior technology consultant at Sophos, said virus writers
are still predominantly males of between 14-24, who are looked down upon by
hackers, even though the two groups are not as far apart as they used to be.

There's little evidence that terrorists are interested in developing
viruses, which in any case make poor weapons, according to Cluley. Up to
date anti-virus software and safe computing practices (such as not opening
suspicious attachments, blocking dangerous file types and applying security
patches) stop viruses dead in their tracks. It's also difficult to target
viruses, Cluley points out. ®

------------------------ Yahoo! Groups Sponsor ---------------------~-->
Universal Inkjet Refill Kit $29.95
Refill any ink cartridge for less!
Includes black and color ink.
http://us.click.yahoo.com/QzLWzD/MkNDAA/ySSFAA/kgFolB/TM
---------------------------------------------------------------------~->

------------------
http://all.net/ 

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ 

• Next message: Fred Cohen: "[iwar] [fc:Excite.At.Home.Could.Cease.Service.on.Nov..30]"
• Previous message: B.K. DeLong: "[iwar] Black Hat Windows Sec. Briefings CFP - Deadline 12/15"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.2 : 2001-12-31 20:59:59 PST