Bangkok--14 Aug--At Your Service Fortinet? — the pioneer and leading provider of unified threat management (UTM) solutions — today announced the top 10 mostreported high-risk threats for July 2007. The report, compiled from all FortiGate? multi-threat security systems in production worldwide, isa service of Fortinet’s FortiGuard Global Security Research Team. July 2007’s top 10 threats, as determined by the degree of prevalence are:Rank Threat Name Threat Type % of Detections 1 W32/Netsky.P@mm Mass mailer 9.52 2 HTML/Iframe_CID!exploit Exploit 8.42 3 W32/Bagle.DY@mm Mass mailer 4.71 4 W32/Dialer.PZ!tr Trojan 3.62 5 W32/Grew.A!worm Worm 3.09 6 W32/ANI07.A!exploit Exploit 2.88 7 W32/Netsky!similar Mass mailer 2.66 8 W32/Bagle.GT@mm Mass mailer 2.53 9 W32/Sober.AA@mm Mass mailer 2.30 10 W32/Virut.fam Virus 2.27 The July top 10 highlights the following: An increase in the breadth of detection caused a lowering of the Top 10 percentages overall. Last month, Netsky.P was catching up to, but now has surpassed Bagle.DY, just about doubling its performance. ANI07.A is still holding on, despite a patch being released, which means it is either still effective or it is not beingsufficiently cleaned off of public Web sites. The email based Iframe_CID exploit has moved higher than normal, perhaps owing some of its success to Netsky.P's mass mailercomponent and its own recent rise in activity. Last month, the most popular trend the FortiGuard team spotted was the inundation of rogue electronic greeting cards increasedfueled by the “Storm Worm” (aka W32/Tibs), whose creators seemingly decided to broaden the peer-to-peer botnet via this well-known strategy.However, what’s new about the Storm Worm is the method of attack and how it can compromise a Web browser. The only innovation in themalicious e-card storm lies in the following fact: should a user by mistake or intentionally, request the index page rather than paste thefull malicious link inside the browser (or click on it, in case HTML is enabled in the mail client), the Web server would deliver a load ofmalicious java scripts to the user’s Web browser. Indeed, a look back at recent events such as the MPack "drive-by-install" case, where malicious IFrames silently redirectedhundreds of thousands of visitors of legitimate — but hacked — Web sites to a page full of malicious scripts, seems to highlight browserexploitation as the new "big thing" among virus writers. Figures tend to confirm this: Since January, the impact of exploits in maliciousactivity has almost doubled, to reach five percent of the global malware activity in July. “The slight shift toward browser exploitation partly lies in the fact that it bypasses any form of user interaction, hencerendering user education useless,” said Guillaume Lovet, manager for the FortiGuard Global Security Research Team. “While we are enteringthe Web 2.0 era, most of our data and applications are shifting from the desktop to online. The Web browser is our gateway to those, andtherefore becomes absolutely centric.” To read the full July report, please visit http://www.fortiguardcenter.com/reports/roundup_jul_2007.html. For ongoing threatresearch, bookmark the FortiGuard Center (http://www.fortiguardcenter.com/) or add it to your RSS feed by going tohttp://www.fortinet.com/FortiGuardCenter/rss/index.html. To learn more about FortiGuard Subscription Services, visithttp://www.fortinet.com/products/fortiguard.html. About Fortinet (www.fortinet.com) Fortinet is the pioneer and leading provider of ASIC-accelerated unified threat management, or UTM, security systems, which areused by enterprises and service providers to increase their security while reducing total operating costs. Fortinet solutions were builtfrom the ground up to integrate multiple levels of security protection--including firewall, antivirus, intrusion prevention, VPN, spywareprevention and anti-spam -- designed to help customers protect against network and content level threats. Leveraging a custom ASIC andunified interface, Fortinet solutions offer advanced security functionality that scales from remote office to chassis-based solutions withintegrated management and reporting. Fortinet solutions have won multiple awards around the world and are the only security products thatare certified eight times over by ICSA Labs (firewall, antivirus, IPSec, SSL, IPS, client antivirus detection, cleaning and antispyware).Fortinet is privately held and based in Sunnyvale, California.