Company officials said fake antivirus "had a very strong quarter" and predicted continuing activity in this area as it provides an immediate source of revenue (victims actually pay for the malware).
Password-stealing Trojans remain prevalent, with 'banker' Trojans (password stealers aimed specifically at online banking credentials) using bogus emails purporting to come from organisations including UPS, FedEx, and the US Postal Service and Internal Revenue Service.
Adobe products are "the favourite targets of client-side exploitation", according to McAfee.
Perhaps linked to the growth in malware, prices for some black market services have continued to fall. DDoS services can be had for $US10 per hour (between a half and one quarter of the going rate a year ago). Malware installation rates vary widely according geography: McAfee reports $US8 per 1000 installs of a single application in Asia, rising to $US160 in the US.
What about spam? See page 2.
Common spam subjects varied significantly between countries. In Australia, delivery status notifications (DSN; typically used as bait for attached malware) were the most common, followed by 419 scams. In the US, product spam was way out in front with DSN in second place.
The full McAfee Threats Report for 1Q11 is available here [PDF, 6.9MB].