Microsoft releases new Microsoft Security Intelligence Report

Microsoft Corp (Nasdaq:MSFT) released on Monday the seventh volume of the Microsoft Security Intelligence Report (SIRv7).

The report indicates that worm infections in the enterprise rose by nearly 100% during the first half of 2009 over the preceding six months. Rogue security software remains a major threat to customers, but 20% fewer customers were affected by rogue infections during the past six months.

In addition, the Zlob family of trojans, considered a top threat two years ago, has declined due to the company's work to clean customer machines and customers' diligence in applying software updates, Microsoft said.

According to SIRv7, Conficker and Taterf were the top two worm families detected. Conficker was the top worm threat detected for the enterprise, because its method of propagation works more effectively within a firewalled network environment. Taterf, with detections up 156% since the second half of 2008, targets massively multiplayer online role-playing games (MMORPGs). These attacks rely less on social engineering to spread and more on access to unsecured file shares and removable storage volumes.

According to the report, rogue security software remained the single largest threat category for the first half of 2009. Also known as 'scareware,' rogue security software takes advantage of customers' desire to keep their computer protected. Microsoft advises computer users to use an anti-malware solution from a company they trust and to keep its threat definitions up to date.

Microsoft also recommends customers and organisations use the data and prescriptive guidance outlined in the report to assess and improve their security practices. The company recommends users the following proactive steps: understand the Microsoft security update process and terminology; ensure that all third-party applications are being updated regularly by the vendor; ensure that a customer's development team is using the Security Development Lifecycle (SDL) or a similar software security assurance process; and ensure that policies are in place to help secure all file shares and regulate the use of removable media.

A full list of Microsoft's guidance, a downloadable version of SIRv7 and other related resources are available at http://www.microsoft.com/sir.

Comments on this story may be sent to tww.feedback@m2.com

Related terms: computer, engineering, environment, family, infection, media, nasdaq, online, security, software