Malware, broadly defined as any type of malicious and probably secret software, has been an issue in the personal computer (PC) industry since at least the mid 1980s. This paper outlines the current state of malware with an emphasis on non-viral malware such as spyware, adware, worms, Trojan horses, keystroke loggers, dialers, and browser hijackers. Viruses are mentioned only as a comparison point where appropriate. This paper reviews the types and behaviors of malware, infection methods and mitigation techniques.
I finished this paper in July of 2006. The malware landscape has not changed significantly in that time. The names keep changing and the skill with which exploits are launched increases but ultimately there are not any new tricks at the moment. As an example the major malware outbreak as I write this (August 2007) is the Storm worm which uses automatic mailing and social engineering to get people to get people to open the file. For anyone who has watched malware over the years this should seem very familiar. This article should help to quickly bring someone new to malware up to speed and may fill in a few blanks for the veterans.
The linked paper to also has a section for further research. This was paper was originally used as part of an assignment. The further research was not completed. If anyone is interested I would be happy to be of assistance.