Microsoft security report shows rogue security is top threat

Released twice a year, the report uses data gathered from hundreds of millions of computers worldwide to provide a snapshot of security issues. Microsoft's latest volume, which covers the second half of 2008, offers new data on document file format attacks, the differences in malware affecting home and business computers, and phishing. Rogue security software, also known as 'scareware', takes advantage of users' concern to keep their computers protected. The software lures them into paying for protection that, unknown to them, is malware, often designed to steal personal information. Microsoft cites two examples – Win32/FakeXPA and Win32/FakeSecSen – which were detected on more than 1.5 million computers. In addition, Win32/Renos, a threat used to deliver rogue security software, was detected on 4.4 million computers, an increase of two thirds over the first half of 2008. "We continue to see an increase in the number of threats and complexity of those threats designed to implement crime at a variety of levels online," comments Vinny Gullotto, general manager of the Microsoft Malware Protection Centre. "As Microsoft and the industry continue to improve the security of our products and people become more concerned about their online safety and privacy, we see cybercriminals increasingly going after vulnerabilities in human nature, rather than software." Gullotto suggests configuring computers to use Microsoft Update instead of Windows Update. "This will ensure the receipt of security updates for Microsoft Office and other Microsoft applications, as well as security updates for Microsoft Windows operating systems," he says. Other suggestions include: ensuring that enterprise users have policies in place to help secure all file shares and regulate the use of removable media; and using the Microsoft Security Assessment Tool (MSAT), available at http://technet.microsoft.com/en-us/security/cc185712.aspx.