According to the report, "Malware continues to grow, with 2009 figures increasing more rapidly than those in 2008. Fake security software, AutoRun USB infections, and especially social networking attacks contributed to the totals.
Starting in November we saw dangers on the web greatly increase, with phishing, continuous activity from Koobface, many new Trojans and PUPs, and a sudden spike in suspicious domains registering during the week of December 20."
The practice of "headlining" has become more prevalent. This is where a major world event (for example Michael Jackson's death) is used as the theme for a spam campaign. "The body of the message won't necessarily have anything to do with the subject (usually the message body is unchanged from the current spam campaign), but it can often trick the victim of the spam to take an extra moment to look at the message."
Another event was the June 4th speech in Cairo by President Obama to the Muslim world. "It was quickly followed by these spam headlines: 'Shocking Obama's speech,' 'Obama cursed by Pope,' 'Super Obama's pants,' and 'Obama sued for his speech.' The spam authors were clearly watching the trip carefully, though what they learned from it leaves much to be desired."
"When a celebrity dies or a catastrophic weather event happens, people want information on it. The cybercriminal knows that people will go to the Internet to get this information and they react rapidly to the opportunity. Almost all high-impact news will lead to many of the same threats - fake websites and poisoned search results with the same goal in mind: data theft."
SQL-injection attacks seem to be a specialty of Chinese attackers. Close to 55% of all attacks originated in China, with the US claiming a little over half of the remainder. Most attacks were based on publicly-known SQL-injection techniques; "We also noticed remnants of the Damnec botnet in some of the attempts, reminding us that automated web server exploitation continues to thrive."
During the latter part of 2009, police forces around the world had a number of successes. One of the best known was the FBI's Operation Phish Phry where over 50 US residents and nearly 50 more Egyptians were arrested and charged with a variety of fraud-based offenses.
Additionally, Romanian police caught 19 members of an alleged card skimming ring.
"The indictment alleges that the group used sophisticated hacking techniques to compromise the data encryption protecting customer data on payroll debit cards.8 Once the encryption was compromised, the hacking ring allegedly raised the account limits on compromised accounts, and then provided a network of "cashers" with 44 counterfeit payroll debit cards, which were used to withdraw more than $9 million from over 2,100 ATMs in at least 280 cities worldwide, including cities in the United States, Russia, Ukraine, Estonia, Italy, Hong Kong, Japan, and Canada. The $9 million loss occurred within a span of fewer than 12 hours."
The McAfee report also deals with issues such as the speed with which cybercriminals update their software tools, with 'hacktivism' (politically-motivated hacking) and all manner of bot-nets. It certainly makes for interesting reading.
However, taking an eagle's eye view of the world, there seems to be one clear observation:
Plus Ã§a change, plus c'est la mÃªme chose.