Palyh and Fizzer Top Troublemakers in May
After topping the infamous virus charts for several months, the Klez and Yaha worms have some company from newcomers in the virus world -- Palyh and Fizzer.
Both Sophos Inc. and Central Command, Inc., antivirus vendors, report that they detected a plethora of new viruses, worms and Trojans in the month of May. Sophos reported 611 new entries, while Central Command reported 915 new malicious applications.
Palyh and Fizzer hit the Internet with enough force to rank them in the number one and number two spots, in terms of frequency, on the Sophos list. At Central Command, Fizzer was ranked fourth, with the Klez worm retaining its number two position.
Palyh accounted for nearly one-quarter of all confirmed infection reports at Central Command, and nearly 20 percent at Sophos.
Fizzer, which Central Command calls Fizzu, is a worm that proliferates through email and file-sharing programs.
''We are seeing more and more viruses coded to spread over peer-tp-peer (P2P) applications like Kazaa,'' says Sundermeier. ''Nine out of ten times, the P2P worm will copy itself under enticing filenames like password-cracked software programs, downloaded movies, games or pornography. The bottom line is that programs like Kazaa are opening gapping security holes within a corporate infrastructure.''
Fizzer trailed way behind Palyh with only 6 percent of confirmed infections at Central Command and 9.8 percent at Sophos.
Fizzer and Palyh bear a solid warning for users, according to Chris Belthoff, a senior security analyst at Sophos.
''Both of these prove that it isn't enough just to block your email gateway -- companies should also ensure that virus protection for their desktops are automatically updated,'' warns Belthoff.
Sophos' list of top five viruses, in order of ranking, are: Palyh, Fizzer, Klez, Lovgate and Sobig. Klez has made the Sophos chart for the past 16 months.
At Central Command, the top five are: Palyh, Klez.E, Sobig, Fizzu (or Fizzer), and Yaha.
May 29, 2003
By 2005, 60 percent of the costs associated with corporate security breaches will be financially or politically motivated, according to a new report from Gartner Inc. And most of those financial losses will be at the hands of insiders.