Napera

2008 has been a malware roller coaster ride, and as the end of the year approaches, the bad guys appear to be picking up speed. Microsoft released six critical patches this morning, fixing remote code execution flaws in Windows, Word, Excel, Internet Explorer and Visual Basic. No news yet of exploits in the wild but they usually aren’t far behind.

These latest fixes come on the heels of a New York Times article which claims malicious software is spreading faster than ever and that the industry cannot get ahead of the onslaught, and many folks are saying we are losing the war.

Read the full article…

As a followup to my post on the Conficker worm in the wild, Trend Micro reported on Sunday that they have now seen over 500,000 infected hosts with this malware (which Trend call WORM_DOWNAD.A and is also known as Net-Worm.Win32.Kido.l). That’s a pretty incredible growth trajectory for the Windows RPC exploit which only became widely known on October 23rd. At this rate we could be seeing the birth of a rival to established botnets like Storm.

Read the full article…