By Tim Alper
Contributing Writer
Across the world, Christmas and New Year were ― as always ― a time of excess, champagne and fireworks. But while most across the globe were giving each other presents and setting off skyrockets, unaware, restless hackers and virus producers were hard at work.
It seems there is no rest for creators of malevolent new software that never ceases to attack the world's computers..
Indeed, there was even a topical virus that surfaced moments before the countdown on Dec. 31. The ``Happy.exe'' file, sent to users as an email attachment, came along with a cheery festive message instructing users to download and enjoy the festive fun.
After redirecting users to a Web site, victims were told, "Your download should begin shortly. If your download does not start in approximately 15 seconds, you can click here to launch the download and then press Run. Enjoy!"
Experts quickly flagged the application as a worm, which could have huge effects on the PCs and networks.
Trend Micro, an antivirus software provider, warns, ``This worm usually arrives via email. It can also be spread by other infected software by sending email messages containing a link which redirects users to a website where it can be downloaded.''
The year 2007 saw Koreans rushing off to repair shops to fix problems caused by a "Bin Laden" virus. This ``malware'' was spread via emails that also contained an attachment called ``BinLaden-Brasil.exe.''
PandaLabs, a test center at Panda Security, which makes antivirus software, has recently released a list of the more imaginative pieces of malware that circulated in 2007, and it all makes uncomfortable reading for computer users.
Last year was the year of the ``Aifone.A'' Trojan, which appeared around the time of the launch of the Apple iPhone. It ostensibly promoted the iPhone when it actually was trying to trick users into letting it into their computer systems to cause untold havoc.
``Sinowal.Fy'' was another sinister virus. Once this program gained entry into systems, it encrypted computer files and blackmailed users into buying tools to decrypt them from websites presumably owned by the malware's manufacturers.
``AttachMsngr.G'' was another harmless-enough looking program but was like something out of George Orwell's 1984. The program recorded records not only of Messenger chat conversations, but also users' keystrokes and mouse movements.
However, the PandaLab list also contains a few examples of malware makers who are clearly not without a sense of humor, albeit a very dark one.
``CivilArmy.B'' bombarded users with long, romantic yarns including alarming warning messages, while a worm known as ``RogueMario.A'' installed the classic version of the Mario Bros game on the computers it affected.
Microsoft made quite a big deal about the release of its new operating system, Windows Vista, the successor to the popular XP. Viruses and worms have long been the Achilles' heel of Windows, while rival operating systems like Linux and Apple have been able to claim that they are much harder to infect.
Vista was supposed to be the antidote to that, with a new, improved Firewall intended to bring Windows up to the same levels as their rivals on the virus score.
In spite of this effort, research from antivirus giants Kapersky Lab would seem to suggest that there are actually some pretty major leaks in the Vista Firewall. Tests used on the Vista security shield have found several holes in the system, which will call for the installation of external security solutions.
That is precisely what Microsoft was trying to avoid, having added functions like User Account Control, Internet Explorer Protect Mode and PatchGuard to Vista. These are all programs designed to provide adequate defense, but it seems Vista is not safe from nasty worms and viruses after all.
Kaspersky's Nikolay Grebennikov said in a statement, ``Windows Vista cannot block all types of leaks on its own. From Windows XP SP2 onwards, Windows has included a Firewall as standard. This Firewall function was significantly expanded in Windows Vista. But after thorough tests using default settings, Windows Vista was unable to block all the viruses in the tests.''
The future looks bleak for Internet movie fans as well. According to reports from Sunbelt Software, anti-spyware producers, there are teams of malware producers using sites like Google-owned blog site host Blogger as a base for spreading Trojan horses.
Sunbelt claims that users surfing through Blogger results (blogs) may come across pages that contain video files which ask them to install codecs (video file readers), in order to view clips which turn out to be Trojan programs that can cause severe damage to a user's PC.
Codecs are frequently installed without a second thought, and with so many different types of video files around, the request seems perfectly innocent. But it is that veneer of innocence that virus producers so carefully crafting when making a new piece of malware.
Virus experts say that codec scams are an annoying and growing threat. Interestingly, Korean users might be safe, especially if they are using video players like Gom Player, which boasts an inbuilt codec library, meaning users here do not need to trawl the web for video decoders that might not be what they seem.
With mobile malware, viruses designed to attack mobile phones, smartphones and PDAs are also on the rise this year, with the number of viruses for such devices now exceeding the 400 mark. Last year was definitely a good year for virus producers, if not for those of us who would like to avoid them.
There is no reason to think that these nasty people are going to give us a break in 2008, either. In fact, with the global economy in decline and a new president at the helm in Korea, the only sure thing about the year ahead might be a rise in the amount of software out there designed to damage your computer.