Latest malware threat roundup and forecast PDF report
Trend Micro today published the TrendLabs Semi-annual Threat Roundup and Forecast. Analyzing malware trends that influence the economic growth of the malware world, the report demonstrates how malware attacks have changed in their style, motivation and target.
The era of the global malware outbreak is over. Today’s malware threats attempt to remain undetected and now often go after users in a specific region, country or group. These new attacks are of blended and sequential nature. They use combinations of malware, each of which plays a role in the delivery of the payload. Using the Web for delivery, update and entrenchments, such insidious attacks report back stolen information to the perpetrator, with the end goal of making money.
In the first six months of 2007, TrendLabs tracked several examples of just how the threat landscape has evolved, including “Storm” at the beginning of the year and the “Italian Job” most recently in June.
In an effort to provide comprehensive and reliable analysis, TrendLabs is examining new methods for analyzing and understanding the evolving threat landscape. The Semi-Annual Threat Roundup and Forecast examines threats in the following categories:
1. Infrastructure vulnerabilities: Threats that originate from the existence of security weaknesses in applications, network architecture or operating systems.
2. High-impact threats: Threats that have the capacity to cause very high localized damage. Examples include global outbreaks and targeted attacks.
3. Content-based threats: Threats which are delivered to the target victim as part of content, such as phishing or spam.
4. Process-based threats: Threats that are in the form of an executable application resident on the host PC. Examples include malware, spyware and adware.
5. Distributed threats: Threats, like bots, where the infection is used to mount an attack on a third-party victim.
To download a copy of the full report, visit http://us.trendmicro.com/go/threat-report2007 (PDF file; doesn’t require registration):