China hardest hit by latest IE zero-day attacks
Summary: The attacks, first spotted on March 9, included Trojan downloaders and backdoor programs that gave malicious hackers full access to hijacked PCs.
Computer users in China and Korea were the hardest hit by the latest wave of zero-day malware attacks targeting a flaw in the Internet Explorer browser, according to data released by the Microsoft Malware Protection Center (MMPC).
The attacks, first spotted on March 9, included Trojan downloaders and backdoor programs that gave malicious hackers full access to hijacked PCs.
[ SEE: New Microsoft IE zero-day flaw under attack ]
According to the MMPC, the targets have spanned over 50 countries, with the most frequently targeted computers in China and Korea, with the US trailing a distant third place. This chart provides a visual breakdown of the compromised computers:
The MMPC said the attack landscape escalated immediately after proof-of-concept come was released and fitted into public exploit testing tool like Metasploit.
Unprotected users are susceptible to infection when they browse to a malicious Web page that attempts to exploit this vulnerability. If the exploit is successful, a number of malware families may be installed on the victim’s computer. The majority of malware downloaded after a successful exploit are trojans.
The group listed at least six Trojan variants related to these attacks and said it expects the threat landscape to mellow with the release and adoption of the just-released emergency IE patch.
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
And credit goes to the end-user for not updating
The root cause to most computer problems can be traced back to whatever sits between the chair and keyboard.
Serves them right!
Wrong. Security updates are available on pirated versions of Windows.
Also, Bill Gates, as CEO of Microsoft, actively encouraged China to use pirated versions of Windows.
doesn't zero day means no security update yet?
In addition
Mark
As I already said above, security updates are available for pirated Windows
Microsoft takes first place
China and Korea both have about 90% IE usage
Browser market share varies markedly by country. Some countries are big users of IE, while many are not. For example, a third of IE market share actually comes from China alone. Obviously, that alone would make it the biggest target for attacks on IE. The overwhelming use of IE in that market also encourages malware authors based in China to focus on IE, since that's what's everyone is using there.
Meanwhile, many other countries actually have higher usage of FF and other alternatives than the overall world average and will not be affected greatly by IE issues. For instance, a country like the Philippines, with FF usage as high as 60% and total IE usage of 23% (IE6 7%), wouldn't be expected to encounter much difficulty with this latest issue.
Here's the browser breakdown or China and Korea -
China - [b]IE6 60%[/b]
IE7 15%
IE8 14%
Korea - [b]IE6 43%[/b]
IE7 29%
IE8 21%
I find it totally amazing that the country with the fastest Internet connections in the world is still relying on the slowest and most flawed browser in the world. I guess you really can't have it all :-)
Bill Gates
Hence why I added "as CEO of Microsoft". He was when he encouraged it.
I feel SO sorry for the Chinese...
Some minor government-related computers probably were hacked.
I can't help wondering why so poor and vulnerable a browser as
Henri
National sport and all, so ya.
RE: China hardest hit by latest IE zero-day attacks
<a href="http://www.yuregininsesi.com">sesli sohbet</a> <a href="http://www.yuregininsesi.com">sesli chat</a>