Security Firm Mistakes Malware Writers' Trickery For Decline In Virus Problems

from the semantics dept

Anti-virus firm Kaspersky Labs says that virus writers are running out of ideas, and that they've reached a stalemate with AV companies. It seems like they're splitting hairs: perhaps viruses aren't causing the problems they used to, but there are plenty of other other security problems that continue to grow. For instance, spam is on the upswing, and it's stemming from a new type of botnet. Kaspersky ought to be familiar with it, since the trojan it uses to spread itself around carries a pirated version of Kaspersky AV software, which it uses to remove any other malware on the recipient's computer, which could be competing for resources. The semantics of what is or isn't a virus aside, all that's happening is malware authors are continuing to focus their efforts in areas that promise the most financial gain, and this dictates a change in tactics. They're shifting away from large-scale attacks that cause a lot of havoc -- but not necessarily a lot of profits -- and working to cover the tracks of smaller attacks that can, they hope, go on undetected for a longer time. To suggest that antivirus companies' work is done is disingenuous; all that's happened is the threat has shifted, and as the recent deluge of spam highlights, they've got plenty of work to do.
Hide this

Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.

Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.

While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.

–The Techdirt Team


Reader Comments

Subscribe: RSS

View by: Time | Thread


  1. identicon
    Anonymous Bum, 21 Nov 2006 @ 11:29am

    Gone Phishing

    And they will be back.

    link to this | view in thread ]

  2. identicon
    Anonymous Coward, 21 Nov 2006 @ 11:36am

    Re: Gone Phishing

    Back? Doesn't this article clearly state that they haven't gone anywhere? Lol.

    link to this | view in thread ]

  3. identicon
    Mike Wright, 21 Nov 2006 @ 11:42am

    "Malware" and "Virus" in the same headline... Grr

    FTA: "The semantics of what is or isn't a virus aside, all that's happening is malware authors are continuing to focus their efforts in areas that promise the most financial gain, and this dictates a change in tactics. "

    That happened a long time ago, way back when the whole purpose of writing a virus was so a mischevious programmer could add his signature to an existing piece of software and then see how many other computers would be infected by people transferring floppies from one computer to another.
    The original viruses were simply a few extra bytes added to the end of an .exe or .com file, and usually the only people who would ever see it (or care, or understand) were other programmers.
    Financial gain was never something that the author was after as a result of his work; the bragging rights were the currency that they saved up.

    Malware authors have as much in common with the original virus authors as modern-day "hackers" have in common with the true code-writers from 'back in the day'.
    Adware, pop-ups, spam... this is just a bunch of BS written by people who don't posses the skills to write useful apps.

    link to this | view in thread ]

  4. identicon
    techdragn, 21 Nov 2006 @ 11:43am

    is that a joke?

    I see more trojan attacks, phishing attacks and spam attacks growing every day.
    Technically this are not really "Viruses", but the attacks continue, and they are increasing.

    I wonder if they had a weed supply that "went up in smoke" just prior to making that statement?

    link to this | view in thread ]

  5. identicon
    byte^me, 21 Nov 2006 @ 12:19pm

    Does this really matter?

    I question how many true "viruses" are still common these days anyways. But, more to the point of the article.....

    How many malware writers have really had any new ideas for years? Sure, there were a few who had some decent programming skills, but the majority are just script kiddies reusing someone else's code and making a few changes. Or, if they can write code, just changing their own code a a little bit. Either way, there have been very few new ideas.

    I also think that they have realized that causing widespread havoc draws bad attention to, so why not keep things small and make a few $$$ while you're at it? Plus, you can still work on bragging rights.

    And, I agree with Mike. Most of them are no where near the hackers of old. Honestly, I think the majority of true *hackers* have now gone at least somewhat legitimate. While they might create tools that can be use for malicious purposes, they have found it much more profitable to help the security pros by creating tools to help find and fix the problems instead of creating more.

    link to this | view in thread ]

  6. identicon
    Anonymous Coward, 21 Nov 2006 @ 1:25pm

    One needs to understand the various definitions of all the terms floating around. Worms, trojans, viruses, spyware, etc., all have very different attributes and purposes. An actual virus is a piece of code meant to delete data, crash systems, and cause other sorts of mayhem. A worm is a little app that burrows into your system, trying to find data to steal from you, not delete said data. And I think we all know what adware and spyware do.

    I would say, from what I've seen, that actual "virus" outbreaks have been dying down for quite some time now, whereas other forms of malware attacks are on the rise. One thing to keep in mind is that a good share of the "viruses" that have shown up throughout history have been from mischieveous kids with nothing better to do than vandalize people's computers. The problem with things like spyware and spam is that the ones behind it are individuals, companies, and even sometimes corporations that stand to profit from the attacks. Because money is the motivation, that's why the new attacks are so much more of a problem. The phrase "if there's a will, there's a way" takes on new meaning when the word "profit" enters the picture.

    link to this | view in thread ]

  7. identicon
    Squall, 21 Nov 2006 @ 1:49pm

    Re: "Malware" and "Virus" in the same headline...

    I think that it would be interesting if the smart coders (the ones that used to write the viruses) would write some viruses that could clean up these bot-nets.

    Only problem I see with this approach is the fear of being sued or thrown in jail because somebody just doesn't Get It(tm).

    link to this | view in thread ]

  8. identicon
    Rico J. Halo, 21 Nov 2006 @ 10:15pm

    Re: Re:

    I have used Trend Micros Office Scan at work for 5 or 6 years now. The only time weve had any sort of outbreak was when a tech connected a clients nimda infected server to our network without bothering to check with anyone. It immediately infected a half dozen servers but Trend knocked it down immediately on all but one of them. I watched it fighting the nimda bug on a database server for about 45 min and honestly it was a vicious battle. But it did kill it eventually. We lost a lot of data files that the nimda bug corrupted but as always had a backup less than 24 hrs old. I think the virus writers are getting smarter but the AV industry has gotten geometrically smarter in comparison. I can go a couple months at a time without having to login to the Trend Micro console. It just works. :-)

    www.thatpoliticalblog.com

    link to this | view in thread ]

  9. identicon
    Ricky, 25 Feb 2010 @ 6:24am

    Running out of ideas? HA. This must be before these authors literally exploded with fake antivirus ads that inject malware onto people's systems by preying on their trust. This statement just further cements by pleasure in having given up on Kaspersky and never looking back.

    link to this | view in thread ]


Follow Techdirt
Essential Reading
Techdirt Deals
Report this ad  |  Hide Techdirt ads
Techdirt Insider Discord

The latest chatter on the Techdirt Insider Discord channel...

Loading...
Recent Stories

This site, like most other sites on the web, uses cookies. For more information, see our privacy policy. Got it
Close

Email This

This feature is only available to registered users. Register or sign in to use it.