PC malware had its biggest increase in more than four years during the first quarter this year, a new report said.
The total number of samples taken was at 83 million, according to McAfee’s quarterly security report. Fake antivirus programs declined in popularity, but software with faked security signatures, rootkits and password-stealing Trojans rose.
McAfee counted 200,000 new examples of password-stealing Trojan horses.
Rootkits are stealth programs that enable privileged access to the user’s computer. The report calls rootkits “one of the nastiest classifications of malware.” The Koutodoor rootkit spread fastest last quarter.
Software is “signed” by the vendor to tell users it’s safe to install. A user is more likely to trust a well-regarded name like Microsoft, for example, than an unknown vendor. Scammers capitalize on that trust when they forge the digital signature of a trusted provider in order to boost the chances of having their malware successfully installed on the user’s computer.
Security felt forged security signatures would take off after the success of the proliferation of the Stuxnet and Duqu malware programs which used that same tactic.
Among botnets, Cutwail was most active during the quarter, recruiting more than a million new machines. Nearly half of all new botnet control servers were in the U.S.
The McAfee report also noted a dramatic increase in malware designed to attack mobile devices that run Android.
The total number of identified threats to Android devices more than quadrupled in the first quarter, reaching 8,000. However, part of the bump came from improved detection, according to the report. Most mobile malware aimed at Android did not come from apps offered through the Google Play app marketplace.
The report also found most mobile malware originated in and targeted China and Russia.
Malware targeting Apple computers also continued to rise steadily. New malware for the Mac exploded in the second quarter of 2011, but this last quarter saw the most new cases since then with about 250.