SAN FRANCISCO—The first quarter was the busiest ever for malware, with more than 6 million unique sales of recorded malware, according to a report by security software vendor McAfee Inc.
The McAfee threats report for the first quarter concludes that malware no longer affects just PCs. As Android devices have grown in popularity, the platform solidified its spot as the second most popular environment for mobile malware behind Symbian OS during the first three months of the year, according to McAfee, which is now a wholly owned subsidiary of microprocessor giant Intel Corp. after being acquired last year for $7.68 billion.
McAfee also released Wednesday (June 1) a McAfee Labs mobile application security whitepaper that discusses how most Android devices allow the "side-loading" of apps and are not restricted to getting them from a centralized app store. There is no centralized place where Google can check all apps for suspicious behavior, according to McAfee.
In the first quarter, McAfee Labs found that the most prominent types of Android mobile malware were Android/DrdDream, Android/Drad, Android/SteamyScr.A and Android/Bgyoulu, which affected everything from games to apps to SMS data, according to the firm.
With more than six million unique malware samples in the first quarter, the period far exceeded any first quarter in malware history, according to McAfee. February saw the most new malware samples of the quarter, approximately 2.75 million, McAfee said. Fake anti-virus software had a very active quarter as well, reaching its highest levels in more than a year, totaling 350,000 unique fake-alert samples in March, McAfee said.
But while Q1 was a record quarter for malware, spam was reduced to its lowest level since 2007, thanks in large part to the takedown of the Rustock botnet, according to the report. The Rustock botnet was reportedly taken down in March through a coordinated effort by Internet service providers and software firms.
Vincent Weafer, senior vice president at McAfee Labs, said through a statement that the first quarter threats report shows cybercriminals started off 2011 busy.
"Even though this past quarter once again showed that spam has slowed, it doesn't mean that cybercriminals aren't actively pursuing alternate avenues," Weafer said. "We’re seeing a lot of emerging threats, such as Android malware and new botnets attempting to take over where Rustock left off, that will have a significant impact on the activity we see quarter after quarter."
I think you've exaggerated what was stated/reported. Having a centralized means for verification is necessary but not sufficient; iOS has the opportunity to perform the verification by way of their distribution model.
Spam, malware, and phishing attacks are a serious plague. Not only do their infections cause untold loss of productivity but the necessary scanning tools also cause a staggering loss of device productivity and reliability. I think it is important that all companies take this problem much more seriously. Most reports of spam and malware being sent elicit no response from the company and the problems persist. If we all adopted a zero tolerance policy and the senders were more aggressively prosecuted, this problem could be substantially reduced.
"There is no centralized place where Google can check all apps for suspicious behavior, according to McAfee."
David Patterson, known for his pioneering research that led to RAID, clusters and more, is part of a team at UC Berkeley that recently made its RISC-V processor architecture an open source hardware offering. We talk with Patterson and one of his colleagues behind the effort about the opportunities they see, what new kinds of designs they hope to enable and what it means for today’s commercial processor giants such as Intel, ARM and Imagination Technologies.