Copyright 2009. All Rights Reserved. 1 June 16, 2009 Copyright 2009. All Rights Reserved. 1 June 16, 2009 Copyright 2009. All Rights Reserved. 1 June 16, 2009 Top Malware – Mayo 2009 Dmitry Bestuzhev Analista superior para América Latina Junio 2009 [email protected]
Presentacion de Dmitry Bestuzhev, Analista superior para América Latina de Kaspersky, sobre "Top Malware - Mes Junio 2009".
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Copyright 2009. All Rights Reserved. 1June 16, 2009 Copyright 2009. All Rights Reserved. 1June 16, 2009 Copyright 2009. All Rights Reserved. 1June 16, 2009
Copyright 2009. All Rights Reserved. 2June 16, 2009 Copyright 2009. All Rights Reserved. 2June 16, 2009 Copyright 2009. All Rights Reserved. 2June 16, 2009
Top 20 malware en Mayo 2009Position Change in position Name1 0 Net-Worm.Win32.Kido.ih2 0 Virus.Win32.Sality.aa3 0 Trojan-Dropper.Win32.Flystud.ko 4 1 Trojan.Win32.Autoit.ci 5 8 Trojan.JS.Agent.xy6 3 Exploit.HTML.CodeBaseExec7 -1 Trojan-Downloader.Win32.VB.eql 8 -4 Trojan.Win32.Chifrax.a9 3 Virus.Win32.Virut.ce 10 1 Virus.Win32.Sality.z 11 -3 Worm.Win32.AutoRun.dui 12 -5 Packed.Win32.Krap.b 13 -3 Packed.Win32.Black.a 14 0 Worm.Win32.Mabezat.b15 0 Virus.Win32.Alman.b16 1 Packed.Win32.Klone.bj 17 New P2P-Worm.Win32.Palevo.ddm 18 New Trojan.Win32.Swizzor.a 19 0 Exploit.JS.Agent.agc20 0 Email-Worm.Win32.Brontok.q
Copyright 2009. All Rights Reserved. 3June 16, 2009 Copyright 2009. All Rights Reserved. 3June 16, 2009 Copyright 2009. All Rights Reserved. 3June 16, 2009
Net-Worm.Win32.Kido.ih (Conficker)
• Copias de Windows piratas
• Autorun de Windows
• Contraseñas débiles
• Falta de políticas de seguridad y mejores prácticas
• Falta de educación y concientización de los usuarios finales
Factores para prevalecer
Copyright 2009. All Rights Reserved. 4June 16, 2009 Copyright 2009. All Rights Reserved. 4June 16, 2009 Copyright 2009. All Rights Reserved. 4June 16, 2009
Net-Worm.Win32.Kido.ih (Conficker)
Copyright 2009. All Rights Reserved. 5June 16, 2009 Copyright 2009. All Rights Reserved. 5June 16, 2009 Copyright 2009. All Rights Reserved. 5June 16, 2009
Virus.Win32.Sality.aa
• Medios de distribución
– Páginas Web (software pirata)
– Medios de almacenamiento USB
• Funcionamiento
– Infección de los archivos legítimos del sistema
– Infección de las aplicaciones de los usuarios
– Uso del autorun.inf en los medios extraíbles para futuras infecciones
Breves rasgos
Copyright 2009. All Rights Reserved. 6June 16, 2009 Copyright 2009. All Rights Reserved. 6June 16, 2009 Copyright 2009. All Rights Reserved. 6June 16, 2009
Virus.Win32.Sality.aa
• Infecciones a partir de los archivos .doc
• Hecho en Visual Basic
• Sistema operativo del criminal está en Español
“Hecho en casa”
Copyright 2009. All Rights Reserved. 7June 16, 2009 Copyright 2009. All Rights Reserved. 7June 16, 2009 Copyright 2009. All Rights Reserved. 7June 16, 2009 Copyright 2009. All Rights Reserved. 7June 16, 2009
Top 5 – América Latina
Copyright 2009. All Rights Reserved. 8June 16, 2009 Copyright 2009. All Rights Reserved. 8June 16, 2009 Copyright 2009. All Rights Reserved. 8June 16, 2009
Top 5 malware en América Latina
Copyright 2009. All Rights Reserved. 9June 16, 2009 Copyright 2009. All Rights Reserved. 9June 16, 2009 Copyright 2009. All Rights Reserved. 9June 16, 2009
Trojan-Downloader.Win32.BanloadersEsquemas del funcionamiento clásico
Copyright 2009. All Rights Reserved. 10June 16, 2009 Copyright 2009. All Rights Reserved. 10June 16, 2009 Copyright 2009. All Rights Reserved. 10June 16, 2009
El Rol de los datos robados E-mail
Robo de emails
Acceso a Web 2.0 (orkut)
Infección a otros
Nuevo robode dinero
Robo de dinero
Copyright 2009. All Rights Reserved. 11June 16, 2009 Copyright 2009. All Rights Reserved. 11June 16, 2009 Copyright 2009. All Rights Reserved. 11June 16, 2009
E-mails robadosAlmacenamiento en la Web
user
Confidential
Copyright 2009. All Rights Reserved. 12June 16, 2009 Copyright 2009. All Rights Reserved. 12June 16, 2009 Copyright 2009. All Rights Reserved. 12June 16, 2009
Rol de Web 2.0
• Robo a través de Cookies del navegador
• Programas espías del teclado
• Según ComScore, para Agosto de 2008, Orkut tenía 15,5 millones de usuarios registrados.
Orkut, Twitter, Facebook …
Copyright 2009. All Rights Reserved. 13June 16, 2009 Copyright 2009. All Rights Reserved. 13June 16, 2009 Copyright 2009. All Rights Reserved. 13June 16, 2009
Rol de Web 2.0Orkut
Copyright 2009. All Rights Reserved. 14June 16, 2009 Copyright 2009. All Rights Reserved. 14June 16, 2009 Copyright 2009. All Rights Reserved. 14June 16, 2009
Web 2.0 MalwareName of malicious program Detection time Update released
Copyright 2009. All Rights Reserved. 15June 16, 2009 Copyright 2009. All Rights Reserved. 15June 16, 2009 Copyright 2009. All Rights Reserved. 15June 16, 2009