ZDNet UK

CNET NETWORKS UK BUSINESS SITES:
atlarge.com
BNET UK
silicon.com
SmartPlanet.com
ZDNet.co.uk

ZDNet.co.uk - Winner of Best Business Website 2007

You are here: ZDNet.co.uk > News > Security

Security threats Toolkit

Almost half of Kazaa downloads 'threaten security'

Munir Kotadia ZDNet.co.uk

Published: 06 Jan 2004 17:20 GMT

Free software and files downloaded from P2P network Kazaa will pose one of the most significant threats to corporate security in 2004, according to research from risk management specialist TruSecure.

Last year was reportedly the worst ever in terms of virus attacks, disruptive worms and security threats, but 2004 is likely to be even worse. TruSecure expects problems to arise from the sheer volume of both corporate and home users unknowingly downloading Trojans and other malware from P2P networks. Additionally, the company warns that more vulnerabilities in Windows and Internet Explorer will be exploited, causing havoc for administrators.

Bruce Hughes, senior analyst at TruSecure, said research carried out by the company has revealed that around 45 percent of the files downloaded from Kazaa contained planted viruses, back doors and Trojans: "Organisations need to warn their employees about file-sharing applications and the danger they pose to them at work and at home," he said.

Hughes expects another major worm outbreak -- similar to Slammer and MSBlast -- to disrupt IT systems and cause billions of dollars worth of damage at some point in the year, but he also warns that mass mailers, such as Sobig, will continue to mutate and spread. "We expect there to be another big event in 2004 that causes at least a billion dollars' worth of damage. The network-aware worms are perimeter-killers for organisations and we will continue to see the impact of mass mailers," he said.

However, it's not all bad news. Hughes expects that people will be less tempted to write and release malicious code onto the Internet because software companies and governments are actively hunting down virus writers: "Governments are getting more and more serious and Microsoft is putting out bounties on hackers. If they catch someone important, like the author of Blaster or Sobig, they are going to make an example and throw the book at the person," he said.