The number of new pieces of malicious software has doubled in the last year with the web being used increasingly to distribute the code, a report says. In the first quarter of 2007, security firm Sophos identified 23,864 threats, up from 9,450 on this time last year.