Newsletters
News & Information for Technology Purchasers NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Click for more information, or
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
Build Apps 5x Faster
For Half the Cost
Enterprise Cloud Computing

On Force.com
Network Security
24/7/365 Network Uptime!
Average Rating:
Rate this article:  
When Good Browser Add-Ons Go Bad: App Loads Malware
When Good Browser Add-Ons Go Bad: App Loads Malware

By Jennifer LeClaire
May 7, 2014 1:53PM

    Bookmark and Share
The number of infected Windows computers jumped from 5.8 per 1,000 in the third quarter to about 17 per 1,000 in the last quarter, largely due to malware called Rotbrow, which masquerades as a security add-on called Browser Protector, said Tim Rains, a Microsoft security expert. Rotbrow works by downloading other malware onto a PC.
 



It was initially classified as harmless by security firms, but a Web browser add-on drove a three-fold increase in infections on Windows computers at the end of 2013. That's the report from Microsoft's Trustworthy Computing Security Science team. And that's not the only malware that has flown under the radar screen.

But there is also good news. Microsoft reported a 70 percent decline in the number of severe vulnerabilities -- classified as those that can enable remote code execution -- that were exploited in Microsoft products from 2010 to 2013. That proves new security tools are helping PC users win the fight.

"While this trend is promising, cybercriminals aren't giving up. Our data shows that in the second half of 2013 there was a noticeable increase in cybercriminal activity where attackers used deceptive practices," said Tim Rains, a director in Trustworthy Computing at Microsoft. "The continued increase in deceptive tactics is striking; in the last quarter of 2013, the number of computers impacted as a result of deceptive tactics more than tripled."

Avoiding Deceptive Tactics

The number of infected Windows computers jumped from 5.8 per 1,000 in the third quarter to about 17 per 1,000 in the last quarter of the year, largely due to malware called Rotbrow, which masquerades as a security add-on called Browser Protector, Rains said. Rotbrow is a "dropper," meaning it has the ability to download other malware onto a computer. But because it didn't initially download any malware, security firms labeled it benign. Later on it began to do just that and Microsoft spotted it.

It's these so-called "deceptive tactics" that often go undetected by many security firms, Microsoft said. And deceptive downloads -- which are often bundled with legit content like games, music and software -- are the top threat in 95 percent of the 110 regions in the study.

"In addition to what the person thought they were getting, the download also installs malware. The malware may be installed immediately or at a later date as it assesses the victim's computer's profile," Rains said. "It could be months or even years before the victim notices the infection, as often these malicious items operate behind the scenes with the only visible effect being slower performance on the system that was infected."

In the last half of 2013, Microsoft reports, deceptive downloads were definitely in vogue with cybercriminals. Ransomware -- where a cybercriminal hijacks a PC and holds it for ransom until the owner pays a fee -- are also on the rise with a 45 percent year-over-year increase. (continued...)

1  |  2  |  Next Page >

 

Tell Us What You Think
Comment:

Name:



Salesforce.com is the market and technology leader in Software-as-a-Service. Its award-winning CRM solution helps 82,400 customers worldwide manage and share business information over the Internet. Experience CRM success. Click here for a FREE 30-day trial.


 Network Security
1.   New Technology Defeats Privacy Efforts
2.   Juniper DDoS for High-IQ Networks
3.   Big DDoS Attacks Hit Record in 2014
4.   Can Google Stop Zero Day Flaws?
5.   U.N.: Nations Hide Digital Snooping


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
New Web Tracking Technologies Defeat Privacy Protections
Recently developed Web tracking tools are able to circumvent even the best privacy defenses, according to a new study by researchers at Princeton and the University of Leuven in Belgium.
 
Juniper DDoS Solution Aims at High-IQ Networks
In the face of more complex attacks, Juniper Networks is boosting its DDoS Secure solution to help companies mitigate the threats with more effective security intelligence throughout the network fabric.
 
Large-Volume DDoS Attacks Hit Record in 2014
The number of distributed denial-of-service (DDoS) attacks set a record in the first half of 2014, according to a report by Arbor Networks. The number of attacks over 20 GB/sec doubled.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | Small Business | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.