8/23/2005

80% Of Enterprise Desktops Are Infected With Spyware

Filed under: — By Aviran Mordo @ 3:49 pm

Webroot released on Tuesday its second quarterly State of Spyware Report that shows enterprise computers are not winning the battle against malware penetration. The report concludes that uncleaned spyware infections are festering in corporate networks and are letting in even more malware.

According to the spyware report, more than 80 percent of enterprise desktops are infected with spyware. That report also found that the number of spyware traces in the wild has doubled and that possible spyware distribution sites have quadrupled since the last quarterly report was released.

“We’re seeing a lot of migration from low-revenue, click-through infection sites to more extensive spyware attacks,” said Brian Kellner, vice president of enterprise products for Webroot. Kellner said spyware writers are getting much more sophisticated and are succeeding in attacking much more personal information. He said the company’s research has found several hundred thousand spyware distribution sites this year alone.

Top Spyware Threats

  • CoolWebSearch — a Web page hijacker that redirects web searches through its own search engine and might change Internet Explorer settings. It usually installs via malicious HTML applications or flaws in Java Virtual Machines.
  • Elite Bar — a Web page hijacker that tracks Web visits and delivers pop-up ads on the basis of surfing preferences. It also can change settings. Its usual distribution method is with freeware.
  • PowerScan — tracks Web habits and displays pop-up ads. It also can download and execute third-party programs without user consent. It usually infiltrates via ActiveX downloads from Web visits.
  • Look2Me — a new breed of spyware that monitors Web surfing activity and reports to a centralized server. It updates itself and installs other spyware applications at the system level, making it difficult to detect and remove. It usually installs via ActiveX downloads and by vulnerabilities in common Web applications.
  • PurityScan — difficult to remove, it monitors Web surfing activity and reports to a centralized server. It updates itself and installs other spyware applications. It spawns pop-up ads and can degrade browser performance. Its is typically bundled with popular peer-to-peer, music-sharing software such as Grokster and Kazaa.
  • Clkoptimizer — tracks Web surfing habits and populates computers with pop-up ads. It might download third-party programs and usually installs via ActiveX downloads.
  • Other similar spyware components in the most popular threat category are ISTBar, AbberInternet, 180search and Web Search Toolbar.

Security experts recommend that users — both at home and in the enterprise — install antispyware software to protect themselves from such threats.

Source: newsfactor.com

 

2 Responses to “80% Of Enterprise Desktops Are Infected With Spyware”

  1. Pkillur Says:

    CoolWebSearch is the one that I find all the time at work. Also, Hotbar and Alexa (which is bundled with Windows XP and you have to registry hack to remove most of the time). Anyone ever notice that when you run Spybot S&D it usually pauses on teendialer or xxxteen. Something like that? Maybe I just have a bunch of perverts at my work…

  2. Anonymous Says:

    CoolWebSearch is the worst, it took me several hours to remove this crap

Leave a Reply

You must have Javascript enabled in order to submit comments.

All fields are optional (except comment).
Some comments may be held for moderation (depends on spam filter) and not show up immediately.
Links will automatically get rel="nofollow" attribute to deter spammers.

Powered by WordPress