April 2, 2007

FEATURE EDITORIAL

SMALL BUSINESS SECURITY MAKEOVER

As Messaging News reported in our January/February 2007 article The SMB Tipping Point, small-to mid-sized businesses (SMB), can now find vendor offerings tailored to their specific messaging needs.

Last week MessageLabs, a provider of integrated messaging and web security services, announced they are searching for six of the most IT security-challenged small businesses in the UK and US to receive a MessageLabs Makeover that includes protection against email, web, and other forms of converging threats free for one year.

In addition to the small business makeover news, MessageLabs shared new research from technology market research company Vanson Bourne.

The research is based on the insights of almost one thousand UK and US IT decisions makers, and reveals that the worst culprits of security breaches are junior sales people. These men and women, between the ages of 26-35 years old, are multi-taskers and tech savvy, using applications such as email, instant messenger, VoIP, and the web, in any combination, without considering the potential dangers. The report shows that the best behaved regarding security matters are also the most knowledgeable: the techies. These were middle-management males, between the ages of 26-35 years old, that work within the technology function.

In particular, this research - conducted on behalf of MessageLabs - revealed the internal weaknesses small businesses are facing managing external threats. "Today's small businesses need to be vigilant about both external and internal security threats," says Mark Sunner, chief security analyst for MessageLabs. "With almost half of all businesses not providing adequate IT security training and the threat landscape constantly evolving, the battle to protect one's business from online risks is an arduous one."

Small businesses that are interested in competing for one of the six Makeover spots should go to http://connect.messagelabs.com/security-clinic and enter by May 11, 2007.

Bagle Worm Celebrates Its 3rd Birthday

According to Commtouch Software, which is integrated by more than 50 OEM partners, the veteran email-borne malware, known as Bagle or Beagle has celebrated its third birthday by continuing to defeat most anti-virus solutions with its cleverly-devised distribution method. Of late, the email worm uses key offensive strategies to maximize propagation and slip under the radar of traditional AV defenses.

Among the secrets of Bagles' continued "success":

High Distribution Intensity: Bagle-Worm attacks repeatedly in intense, high-volume waves, releasing thousands of infected email messages per day to ensure a wide distribution of the malware across the Internet.

Vast Variant Quantity: Over 30,000 distinct malware variants were detected during the weeks of the report period. Since each variant or group of variants requires a different signature, it is impossible for anti-virus engines to keep up with this rapid-fire pace.

Low Variant Volume: Each variant is distributed in very small quantities or instances. Since an anti-virus vendor must be aware of a malware sample in order to analyze it in its laboratory, distribution in low numbers often enables the malware to "fly below the radar" of the traditional anti-virus engines.

Released by Commtouch in March, the document, Malware Outbreak Trend Report: Bagle/Beagle, details the recent activity of one of the longest-running email-borne malware

Beware Fake Browsers

Nefarious individuals are increasingly creating fake browsers to deceive users and direct Internet traffic, reported FaceTime research, last week. With fake browsers and other adware, they can gain control of computers by tricking the user, instead of exploiting more complex software vulnerabilities. Users can also fall victim to data and identity theft or violations of privacy when using rogue browsers.

FaceTime issued the warning after discovering NetBrowserPro, a Web browser, promising secure porn browsing, but instead installs a rootkit - a set of tools intended to conceal running processes, files or system data from the operating system - and a Trojan called MovieCommander. MovieCommander is disguised as a fake media codec.

When the user installs the NetBrowserPro from Browsezilla.org with the 121.exe file, they agree to allow the program to update and modify itself without notification and have third party applications interact with the browser. Many of the photo galleries linked from the browser will redirect the end-user to an unintended location, which is potentially a security threat.

The FaceTime research team offers a detailed accounting of the infection and the possible motives here.

IN THE NEWS

Final Week to Nominate for Online Safety Leadership Awards and Save on Summit

To recognize the safety efforts of organizations, a call for nominations of companies who have demonstrated leadership in online safety has been made by the Authentication and Online Trust Alliance (AOTA). Nominated companies must be authenticating outbound email and corporate domain via Sender ID or Domain Keys and will be judged based on several criteria. Nominations can be made through April 2, 2007. For more information on the AOTA Online Safety Leadership Awards program click here. Winners will be announced at the upcoming Authentication and Online Trust Summit, April 18-19, 2007 at the Boston Sheraton. The annual AOTA summit includes experts in global authentication, domain defense and online threats. Speakers from consumer brands and technology providers will share prescriptive information about building online trust using authentication, identity and reputation. Register by April 6 and save $100 at www.aotalliance.org/summit2007.

We welcome your ideas and your news for Messaging Newswire’s News & Trends in Email Security. Let us know what you think by sending your comments to sjordan@messagingnews.com. Written or compiled by Stephanie Jordan. All trademarks are the property of their respective owners.

For marketing information on this newsletter or other Messaging News products contact jvictor@messagingnews.com