SMB Nation Blog

Small business IT and technology news for the SMB channel VAR, MSP, and IT professional.

Posted by on in News
  • Font size: Larger Smaller
  • Hits: 2550
  • Print

GFI Report Outlines Top 10 Security Threats for January 2012

Earlier today, GFI Software today released its VIPRE® Report for January 2012, a collection of the 10 most prevalent threat detections encountered during the month. So far this year, threats included malware attacks targeting a wide range of potential victims, including gamers looking for a Pro Evolution Soccer 2012 game crack, small business owners concerned about the reputation of their business, and government organizations receiving spoofed messages from the United States Computer Emergency Readiness Team (US-CERT).

“Anyone who goes on the internet is a potential target for cybercriminals looking to infect systems and scam users,” Chris Boyd, senior threat researcher at GFI Software, said in a press statement. “Malware writers and phishers do not discriminate. They purposefully cast a wide net when picking their methods of attack in order to reach as many targets as possible. Whether you are a young gamer, a successful business owner or a government employee, you need to be wary when clicking on links that appear to pertain to your interests, especially when asked to submit personal information online.”

GFI also warned about other scammers who also latched onto the buzz surrounding the upcoming fourth installment of the Halo® video game series, developed by 343 Industries, by offering bogus beta invites in return for filling out surveys and recommending links on Facebook and Google+. These attacks leverage the popularity of these titles among the gaming community and are meant to take advantage of the mistakes some users might make when acting out of excitement about a favorite game franchise.

January also brought phishing emails posing as notices from the Better Business Bureau, claiming that a customer had filed a complaint against the recipient. The messages contained links to malware created using the Blackhole exploit kit. Government body US-CERT served as another disguise for cybercriminals attempting to bait unwitting victims into opening a file that contained a variant of the Zeus/Zbot Trojan. Meanwhile, Tumblr users were baited with “free Southwest Airlines tickets” in exchange for taking surveys and submitting personal information by a phony “Tumblr Staff Blog.”

Recently, on Facebook, I remember someone on my friends list being victim to a scam of coupons for free dinners at the popular chain restaurant “The Cheesecake Factory.” I would receive wall posts several times a day from this particular friend, and I almost was tempted to “unfriend” here because the posts became so annoying. I finally sent her a message, and begged her to please either deactivate her account or change her password. Once she changed up her log-in information, the problem seemed to be resolved.

GFI compiled a a top 10 threat detection list from collected scan data of tens of thousands of GFI VIPRE Antivirus customers who are part of GFI’s ThreatNet™ automated threat tracking system. ThreatNet statistics revealed that Trojans continue to be the most pervasive threat, taking half of the top spots for January.







Yontoo (v)




Rogue Security Program


INF.Autorun (v)



Trojan.Win32.FakeAV.mqa (v)



Trojan.Win32.Ramnit.c (v)



Exploit.PDF-JS.Gen (v)



GameVance (fs)



Pinball Corporation. (v)



Trojan.Win32.Jpgiframe (v)




Leave your comment

Guest Saturday, 18 April 2015

O365 Tour Requests