Slashdot Mirror

← Back to Stories (view on slashdot.org)

Unprecedented level of Virus Alerts

Posted by CmdrTaco on from the as-microsoft-focuses-on-security dept.

arpy writes "iTnews reports that according to Trend Micro (makers of PC-cillin), there was a record-breaking level of virus alerts in the first quarter of 2004. In Q1 2003, Trend issued 35 virus warnings. During the same period this year, it issued 232. According to the company's annual virus round-up and forecast (PDF), the number of alerts was pretty much steady for 2001-2003. Particularly noteworthy is that so many of the viruses are variants, not original. Trend's April 2 Weekly Virus Report reveals that of the "Top 10 most prevalent global malware", the top five are all variations of Worm_NETSKY. This would seem to confirm Virus creators are sharing more code."

1 of 424 comments (clear)

  1. Re:Virus scanners suck by FireFury03 · · Score: 5, Informative

    While I'm certainly against malicious software (my inbox gets absolutely flooded with these trojans), I think that "virus" writing has really gone down hill in recent years.

    In the good old days, viruses were tightly coded programs that often did cool things (undesirable, but still cool, like making all the letters fall off your screen). They would modify existing programs to become carriers - this is the true meaning of a virus, it modifys legitimate code to allow it to propogate.

    Remember the Cascade virus, back in 1988? 1701 bytes of code that sits in memory, modifying .com files to include it's code as they're opened. Compare with current "viruses", which are really no more than trojans. They're several tens of K in size, rely on the user to be stupid and execute it manually and often just add themselves to the list of programs to start on bootup.

    Correct me if I'm wrong, but I don't think a real virus has been written since the late 1990's. All current "viruses" are either trojans or worms.

    Virus - modifies existing programs to include it's own code.
    Trojan - executable file that pretends to be something the luser wants but is really malicious.
    Worm - self replicating software that uses a network-accessible vulnerability to propogate to other machines on the network (think Code Red, et al)

    --
    http://blog.nexusuk.org