The program is nasty. It deletes pictures and movies from your hard drive and then it teases you: "Even though Mr. Kaneko was found guilty, you are still using Winny. I really hate such people," taunts an animated woman on your screen.
Welcome to the age of localized malware.
Over the past two years virus writers have increasingly targeted their malicious programs to users in different regions of the globe, creating programs that are specially designed to infect users in countries like Japan, Brazil, China or Germany.
Take the taunting Trojan, which goes after users of the Winny file-sharing program. (Winny creator Isamu Kaneko was convicted of abetting copyright violations in late 2006) Winny is file-sharing software that is incredibly popular in Japan, but virtually unknown outside of the region. Still, it's been the target of several malware programs, according to Dave Marcus, security research and communications manager for McAfee Avert Labs. "Japan has some unique factors that we just don't see anywhere else," he said. "There are a couple of malware writers in Japan who don't like people who illegally share content."
Previously, attackers would write programs that would affect the largest possible number of users, but that's no longer necessarily the case, Marcus said. "What we've noticed over the last couple of years is that a growing amount of malware is localized."
McAfee believes that there are a few reasons behind this shift. For one thing, writers no longer want the worldwide attention and law enforcement action that was garnered by outbreaks such as Sasser and Netsky.
And with users becoming more wary, hackers have to be crafty with their attacks -- creating more targeted malware that victims are unlikely to have seen before. Another factor is that criminals are increasingly targeting their attacks to regions that have weak cybercrime enforcement, McAfee believes.
Regional attacks also cater to regional tastes. Online banking is widely used in Brazil, so much of the malware there tries to steal banking usernames and passwords. In China, online gaming is so popular that Chinese World of Warcraft password stealers are now the second-largest class of malware tracked by McAfee, Marcus said.
These regional attacks are part of an explosion of viruses and Trojan programs that is making life more difficult for people companies like McAfee that track and intercept the malware. In 2006, the company identified 53,537 unique pieces of malware according to data set to be published Thursday in Sage, McAfee's semi-annual magazine devoted to security issues.
Last year that number jumped 246 percent to 131,862, and it could double again this year. By the end of 2008, McAfee expects to be identifying about 750 pieces of malware per day.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Best Practice in Building an Integrated Information Management Strategy
Email Archiving Implementation: Five Costly Mistakes to Avoid
Security Inside Out
Cutting printer costs
Enterprise Wireless WLAN Security
Everything you need to know about email and web security (but were afraid to ask)
Strategies for Eliminating .PST Files
Discover the advantages of an open architecture multi-vendor network solution
Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Vignette Announces 2008 Excellence Awards 2008-11-21 10:50:00+11
PGP and Ponemon Institute Unveil Inaugural Australian Data Breach Study 2008 2008-11-20 17:34:00+11
Symantec Cloud Services Transform Data Centre Operations Through Proactive Management 2008-11-20 12:06:00+11
Verizon Business Offers Tips to Building a Successful Unified Communications and Collaboration Plan 2008-11-20 12:04:00+11
AARNet Brings 4K Digital Cinema to Australia: First 4K HD Video Signal delivered into Australia by AARNet 2008-11-20 12:02:00+11
Best Practice in Building an Integrated Information Management Strategy
Discover the business value that creating an integrated information platform can bring. Learn how to provide consistent, accurate information to all stakeholders within your business network. Integrate vital data from disparate sources and deliver a trusted information foundation. Read on to uncover the stepping-stones to your new information management strategy.
Buying Guides
Latest Products
Buying Guides
