Hit-and-run attack one of the top security threats in June
Fortinet, a network security provider and a leader of unified threat management (UTM) solutions, has published its June 2010 Threat Landscape report which showed that new variations of the Sasfis botnet have entered the malware Top 10 list. Sasfis, which has been competing with the Pushdo botnet in terms of sheer volume, was very active.
In June 2010, FortiGuard Labs saw a hit-and-run attack for the Internet Explorer HTML Object Memory Corruption Vulnerability (known as CVE-2010-0249). This attack first surfaced in January 2010 and was used in the infamous Aurora attacks, which planted spy trojans within targeted major corporations.
“We observed Sasfis loading a spambot component, which was heavily used to send out binary copies of itself in an aggressive seeding campaign,” said Manky. “Much like the Pushdo and Bredolab botnets, Sasfis is a loader - the spambot agent is just one of multiple components downloaded.”
Threat activities for the month of June included:
- 200 Vulnerabilities: FortiGuard Labs covered more than 200 new vulnerabilities this period, nearly double from last report. This suggests that an increase in software vulnerabilities continue to be disclosed, ultimately available to hackers for malicious use.
- Flash and Excel Vulnerabilities: FortiGuard Labs discovered four Flash and Excel vulnerabilities, which were disclosed and patched this period.
FortiGuard Labs compiled threat statistics and trends for June based on data collected from FortiGate network security appliances and intelligence systems in production worldwide. Customers who use Fortinet’s FortiGuard Subscription Services should already be protected against the threats outlined in this report.
Phishing attacks have surged 450% in the last year as attackers become increasingly adept at...
ANZ organisations face an increased risk of occupational fraud due to the combined factors of the...
Apple, Microsoft and Google have all committed to offering extended support to the FIDO...