The Year In Computer Viruses: 2006
- December 20th, 2006
- 10 Comments
- The most competitive. Once the Popuper spyware has installed itself on a computer, it runs a pirate version of a well-known antivirus application. Far from trying to do the user a favor, it is actually trying to eliminate any possible rival from the computer. It seems that the fight for supremacy has also reached the world of Internet threats.
- The most diligent. In general, phishing messages are aimed at gathering confidential information such as credit card numbers or account access details in order to steal money. However, this isn’t the case with BarcPhish.HTML, which goes much further, collecting information including expiry dates, CVVs (Card Verification Value), last names, membership numbers, five-digit codes, account numbers, etc. No doubt the creator was thinking “better too much than too little…”
- The biggest snooper. In this case, it was not a difficult choice. WebMic.A is a malicious code that can record sounds and images, using a microphone and WebCam connected to the computer. Of course this is not the sort of uninvited guest you would like to have on your PC.
- The most mischievous. Nedro.B is a worm that seems to get bored after it has infected a computer. Perhaps that’s why it decides to change icons, prevent access to tools, hide file extensions, delete options from the Start menu… and basically cause chaos. Maybe this seems entertaining to someone, but it certainly isn’t for the users.
- The most chaste. Malicious codes that spread across P2P networks use enticing filenames in order to get users to download them voluntarily on to their computers. For this reason, many of these names have pornographic connotations. However, among the more than 37,000 different names used by FormShared.A, none of them make any reference to sex. That’s some kind of record.
- The most archaic. Seemingly there are still some retro virus creators around. Whoever created the DarkFloppy.A worm appears not to have heard of e-mail, instant messaging or P2P systems, as the propagation methods they’ve chosen to spread this malicious code is… floppy disks. Not much chance of a massive epidemic then, is there?
-The most promiscuous. This title goes without a doubt to Gatt.A. This malicious code can infect any platform that it is run on: Windows, Linux, etc.
- The most deceitful. SafetyBar supposedly offers security information and anti-spyware downloads. However, the problem is that once downloaded, these programs then warn the user that the computer is infected by non-existent threats.
Panda Software [company site]
Ryan Stickney (Who am I?)
1 year ago
I saw almost none of those this year. Except for the BarcPhish.HTML My spam blocker caught a ton of these, at one point we getting a few thousand a day.
Jon (Who am I?)
1 year ago
I have had a similar experience as Ryan. I’ve not seen or heard of many of these viruses. Were these mainly self contained to the “adult-education” websites, or were they widespread viruses. Or have I been so out of touch with the online community while at school?
I just seem to remember the panic which was associated with the name of every new virus several (maybe 2 years) ago. It seemed to be such a big deal back then, when viruses would come out of indonesia or somewhere and when the interpol caught the code writers, etc…
Anyways, I like the categories given, “Supervirus Superlatives.”
Jon (Who am I?)
1 year ago
Having only recently switched over to a PC from a MAC for online web surfing… I can only look forward to being able to relate to this article in the next few months… so far so good though.
I have these programs installed and they have saved my computer a few times already!
ZoneAlarm (don’t need Pro upgrade)
Spybot - Search & Destroy
Firefox - EI is a mess waiting to happen
Updating XP every few days with new patches also helps avoid problems. Being a fellow Christian, I wouldn’t know what P(o)rn was even it was right in front of me… Zune or not!
Jon
Ryan Stickney (Who am I?)
1 year ago
I saw a lot of the names of these in virus information but never caught any of them. I think it could be because my users are all locked down pretty tight, we keep our PCs patched, and our AV updated. It always bugs me when people bitch about windows being unsecure, it’s only unsecure if you let it be.
Isaiah (Who am I?)
1 year ago
I’ve seen the filetypes described by FormShared.A, but since I don’t use P2P to get my P2P, it hasn’t effected me. :D
Thunderous Thor (Who am I?)
1 year ago
QUOTE:
“-The most promiscuous. This title goes without a doubt to Gatt.A. This malicious code can infect any platform that it is run on: Windows, Linux, etc.”
Ummm, yeah. Windows and Linux is not any platform. That’s just two. And there are more than a hundred versions of Linux and I guarantee they wouldn’t have the network flaw that allow this program to run. And what about Mac OS X? THat’s a popular platform, and it wouldn’t be affected either… Maybe, for the sake of accuracy…. change your entry about Gatt.A. Maybe do some research instead of copy-pasting like a bandit.
Josh Goldman (Who am I?)
1 year ago
Actually Thor, it can infect any platform, but it only runs on Windows. The virus infects files and then reaches other computers through the infected files.
“Gatt.A is a direct action virus that searches the computer for scripts belonging to the application IDA (Interactive Disassembler) in order to infect them. These scripts have an IDC extension.
Its infection method is polymorphic. When Gatt.A infects an IDC script, it opens itself and generates an IDC code in run time, which is designed to create the executable file belonging to Gatt.A. The IDC script it creates is detected as IDA/Gatt.A.
This infection method makes Gatt.A work properly only on Windows computers, whereas IDA is supported by other platforms such as Linux.
Gatt.A does not spread automatically by its own means, but it infect files. It reaches other computers when the infected files are distributed.”
Stor (Who am I?)
1 year ago
I’m getting really tired of on Mossberg on Vista Windows: Middle …
Megan (Who am I?)
1 year ago
who created it??
business health insurance affordable health insurance quote online (Who am I?)
1 year ago
This is great, look forward to looking into every area. Thanks for being there.