Dorf storms the malware charts

Accounts for almost 50 per cent of all malware seen during January

Written by Robert Jaques

vnunet.com, 31 Jan 2007

The recently discovered Dorf malware has already had a "massive impact" on computer users worldwide, security experts warned today.

The latest malware monitoring data from Sophos said that Dorf has rampaged to the top of the monthly malware threat chart to account for almost 50 per cent of all malware seen during January.

Dorf was aggressively spammed out posing as breaking news of deaths caused by stormy European weather during January.

Later in the month the authors changed tack and launched a second campaign disguising the malware as a romantic email greeting card.

Elsewhere in the Sophos top 10, Netsky, Mytob and Stratio remain rooted in second, third and fourth places respectively, accounting collectively for one third of all malware reports.

"Spammed out with hard-hitting headlines and the promise of exclusive news content, the Dorf malware, or Storm Trojan, moved at gale force speeds and battered inboxes worldwide in an attempt to compromise users' PCs," said Carole Theriault, senior security consultant at Sophos.

"It was not a particularly sophisticated form of attack, as preying on public interest by using breaking news events is a tried and trusted trick and has proven to be a remarkably effective method of fooling recipients into lowering their guard."

Sophos has seen more than 2,500 variants of the Dorf malware, almost a third of the new threats identified during January 2007.

The majority were intercepted by Sophos' proactive Behavioral Genotype Protection technology even before they were formally identified as belonging to the Dorf family of malware.

According to the firm, the proportion of infected email, while substantially higher than in December 2006, is still small at just one in 238 (0.42 per cent).

Sophos identified 7,272 new threats during January, bringing the total number of malware protected against to 214,956.

The full list is as follows:

1. Dorf 46.1%
2. Netsky 16.1%
3. Mytob 9.8%
4. Stratio 8.5%
5. Zafi 3.6%
6. MyDoom 2.8%
7. Sality 2.6%
8. Bagle 2.5% 
9. Nyxem 1.0%
10. Wukill 0.8%
Others 6.2%

Tags:

Further reading

Related articles

New malware-infected site found every five seconds

Experts warn of 'dramatic rise' in web-based threats   More...

Independence Day e-card hides Trojan

Experts warn malware is spreading globally   More...

Halloween 'skeleton' spam hides Storm Trojan

Don't let your PC be turned into a zombie   More...

Angelina Jolie 'nudes' fuel malware spike

Oldest trick in the spammers' book   More...

Do you agree?

Have your say on this article

Advertisement

Job of the week

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Advertisement

Watch

16 May 2008

2.97 MBXP on OLPC, broken dreams and Yahoo fights back More...

15 May 2008

3.28 MBDark fibre, mobile TV and solar power More...

14 May 2008

2.66 MBOnline inequality, mobile thumbprints and corporate raids More...

Listen to more

Poll

HOME WORKING

HOME WORKING

Do you let any or all of your employees work from home?

Previous poll results

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Spotlight

OLPC

OLPC to ship with Windows XP

Microsoft teams up with One Laptop per Child project   More...

The Sims

The Sims goes flat-pack with Ikea

Virtual world gets Swedish wood   More...

Advertisement

Microsoft-Yahoo

Yahoo board fights back at Icahn

Investor accused of 'significant misunderstanding' in Microsoft saga   More...

MySpace

Woman charged over MySpace suicide

Lori Drew indicted on federal charges   More...

Advertisement