Welcome!

Cognitive Computing Authors: Pat Romanski, Liz McMillan, David Linthicum, Elizabeth White, Yeshim Deniz

Blog Feed Post

Darwin’s theory seems to apply to malware

G Data's newest Malware Report shows surprising new trend in cybercrime

Bochum (Germany), 19 September 2012 - G Data's newest Malware Report, which was published today, shows a new and unexpected development in malware: the extreme growth of new malicious programs seems to be slowing down. Granted, the antivirus industry still needed to develop 1,381,967 new virus signatures to detect and block all new malware in the first semester of this year, which is an all time high. But the number is not as high as was to be expected: the figure is only marginally bigger (3.9%) than the 1,330,146 new malware types that were found in the semester before that. But according to the experts at G Data, this does not give anyone any reason to be relieved. The new malware that appeared this year has been the smartest code yet, suggesting an evolution not dissimilar to Darwin's evolution theory.

Over the past ten years, security experts have become used to seeing extreme growth in new malware types. "Clearly more and more time was spent worldwide on writing malicious code to infect computers all over the world. Writing malware seemed to have become an easy trade to make some good money. But, at the same time, potential victims all over the world smartened up and weren't as easily fooled anymore. This seems to have its effect on the malware writing profession now. Only the smarter malware writers, who manage to change their way of working along with the changing circumstances seem to be surviving economically," says Eddy Willems, Security Evangelist at G Data. "Adapting quickly to survive the changing circumstances is pretty much the definition of Darwin's evolution theory."

Smarter malware
A good example of smarter malware is a modern banking Trojan. In G Data's Malware Report the evolution is explained:
"Most past attack schemes were relatively simple. For example, when a victim logged into online banking, he was prompted to enter a large number of TANs, which were then forwarded to the attacker. […] Newer methods are more sophisticated: In so-called Automatic Transfer System (ATS) scheme, the entire theft takes place without customer interaction. Account balances and lists of transactions are also manipulated in such a way that the victim does not notice the theft."

Another example can be found with malware for Android:
"In the year 2011, most of the malware for mobile devices that was circulated still focused on the quick buck […] and could mainly be found on websites or on third-party markets. […] 2012 marked the appearance of completely reprogrammed or even new original apps that provided the full scope of functions advertised but also contained the hidden malicious functions. This had the effect that even the official Google Play Store could distribute malware for several days or even weeks before it was discovered."

Quality over Quantity
The best example of why quality is more important than quantity for malware writers is the Flashback-virus for Apple. "In the first half of 2012, there have been only a few viruses for Mac OS. In fact, there were fewer new threats for Apple this semester, than there were in the two previous semesters. But one high quality virus, Flashback, did the trick. It infected more Apple machines (well over 600,0000) than have ever been infected before, " says Eddy Willems.

The future
The analysts at G Data SecurityLabs think the growth number of malicious programs will stabilize completely, but the quality of the malware will rise even further. Eddy Willems: "I suspect we will be looking at 2.5 to 3 million new threats every year from now on. Quality will triumph over quantity in the underground economy. It has to, because people are understanding the online dangers better and are getting more cautious every day. In order to be successful as a malware writer, more time and thought needs to be put into creating even more deceitful and conniving schemes. And we, as part of de AV industry, have our work cut out for us."

G Data's Malware Report can be downloaded from this link: http://www.gdatasoftware.co.uk/uploads/media/GData_MWR_1_2012_EN_01.pdf.

About G Data Software AG
Bochum-based G Data Software AG is an innovative and rapidly expanding software house that specialises in IT security solutions. A specialist in Internet security and pioneer in the field of virus protection, the company was founded in Bochum in 1985 and developed the first antivirus program 25 years ago.

This makes G Data one of the oldest security software companies in the world. For more than five years, no other European security software provider has won more national and international tests and awards than G Data. The product range comprises security solutions for end customers as well as medium to large-sized enterprises. G Data security solutions are available in more than 90 countries worldwide.

More information about the company and the G Data Security solutions is available at http://www.gdatasoftware.co.uk/.

Editorial contact:
Daniëlle van Leeuwen
Tel: +31 (0) 20 8080835
Email: [email protected]

Read the original blog entry...

More Stories By RealWire News Distribution

RealWire is a global news release distribution service specialising in the online media. The RealWire approach focuses on delivering relevant content to the receivers of our client's news releases. As we know that it is only through delivering relevance, that influence can ever be achieved.

IoT & Smart Cities Stories
Intel is an American multinational corporation and technology company headquartered in Santa Clara, California, in the Silicon Valley. It is the world's second largest and second highest valued semiconductor chip maker based on revenue after being overtaken by Samsung, and is the inventor of the x86 series of microprocessors, the processors found in most personal computers (PCs). Intel supplies processors for computer system manufacturers such as Apple, Lenovo, HP, and Dell. Intel also manufactu...
Darktrace is the world's leading AI company for cyber security. Created by mathematicians from the University of Cambridge, Darktrace's Enterprise Immune System is the first non-consumer application of machine learning to work at scale, across all network types, from physical, virtualized, and cloud, through to IoT and industrial control systems. Installed as a self-configuring cyber defense platform, Darktrace continuously learns what is ‘normal' for all devices and users, updating its understa...
At CloudEXPO Silicon Valley, June 24-26, 2019, Digital Transformation (DX) is a major focus with expanded DevOpsSUMMIT and FinTechEXPO programs within the DXWorldEXPO agenda. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throug...
Apptio fuels digital business transformation. Technology leaders use Apptio's machine learning to analyze and plan their technology spend so they can invest in products that increase the speed of business and deliver innovation. With Apptio, they translate raw costs, utilization, and billing data into business-centric views that help their organization optimize spending, plan strategically, and drive digital strategy that funds growth of the business. Technology leaders can gather instant recomm...
OpsRamp is an enterprise IT operation platform provided by US-based OpsRamp, Inc. It provides SaaS services through support for increasingly complex cloud and hybrid computing environments from system operation to service management. The OpsRamp platform is a SaaS-based, multi-tenant solution that enables enterprise IT organizations and cloud service providers like JBS the flexibility and control they need to manage and monitor today's hybrid, multi-cloud infrastructure, applications, and wor...
The Master of Science in Artificial Intelligence (MSAI) provides a comprehensive framework of theory and practice in the emerging field of AI. The program delivers the foundational knowledge needed to explore both key contextual areas and complex technical applications of AI systems. Curriculum incorporates elements of data science, robotics, and machine learning-enabling you to pursue a holistic and interdisciplinary course of study while preparing for a position in AI research, operations, ...
After years of investments and acquisitions, CloudBlue was created with the goal of building the world's only hyperscale digital platform with an increasingly infinite ecosystem and proven go-to-market services. The result? An unmatched platform that helps customers streamline cloud operations, save time and money, and revolutionize their businesses overnight. Today, the platform operates in more than 45 countries and powers more than 200 of the world's largest cloud marketplaces, managing mo...
Codete accelerates their clients growth through technological expertise and experience. Codite team works with organizations to meet the challenges that digitalization presents. Their clients include digital start-ups as well as established enterprises in the IT industry. To stay competitive in a highly innovative IT industry, strong R&D departments and bold spin-off initiatives is a must. Codete Data Science and Software Architects teams help corporate clients to stay up to date with the mod...
In his session at 21st Cloud Expo, Raju Shreewastava, founder of Big Data Trunk, provided a fun and simple way to introduce Machine Leaning to anyone and everyone. He solved a machine learning problem and demonstrated an easy way to be able to do machine learning without even coding. Raju Shreewastava is the founder of Big Data Trunk (www.BigDataTrunk.com), a Big Data Training and consulting firm with offices in the United States. He previously led the data warehouse/business intelligence and Bi...
The Japan External Trade Organization (JETRO) is a non-profit organization that provides business support services to companies expanding to Japan. With the support of JETRO's dedicated staff, clients can incorporate their business; receive visa, immigration, and HR support; find dedicated office space; identify local government subsidies; get tailored market studies; and more.