Thursday, 18 December 2014

Example Stats of a Macro document malware run

Most people will get a few copies of a certain type of virus and I though it might be of interest to see an example of how many viruses a certain organisation may get.

In the graph below, it shows a snapshot of Virus/Spam items caught by Sanesecurity signatures (Top 5 only)
per hour, yes, per hour:

Sanesecurity_Malware_24646_DocHeur_UNOFFICIAL (which is a generic macro detection signature) blocked a maximum of 16,644  in ONE HOUR... that's a big bot net someone has control of.

What's also interesting to see it how long a typical malware run lasts for.



No comments: