Search



AuthenticationWorld.Com

About

This page contains a single entry from the blog posted on November 4, 2006 1:42 PM.

The previous post in this blog was Watching what goes out the network door.

The next post in this blog is Finding and removing rootkit attacks -How secure do you feel?.

Many more can be found on the main index page or by looking through the archives.

Subscribe to this blog's feed
[What is this?]

« Watching what goes out the network door | Main | Finding and removing rootkit attacks -How secure do you feel? »

Gromozon and the future of malware trojans

If you'd like to get a closer look at the future of malware trojans then read this blog from Symantec Security Response Weblog, October 19, 2006 "Gromozon Evolution: From Spaghetti to Lasagna". The blog shows how quickly trojans are evolving including:

* Anti-reverse engineering - uses scrambled code
* Anti-debugging - checks for presence of debugger files
* Anti-monitoring - checks for monitoring packages
* Anti-anti-rootkit - removes or blocks rootkit prevention programs
* Anti-removal - hides itself in data streams and prevents manual deletion

The code is written by professional criminals who are getting better and better at outwitting current defense strategies. As malware researchers doggedly begin to catch up, they hurl all sorts of new attack resistant strategies at the enterprise. Some recent reports note code variations in the attack software every 30 minutes!

This type of attack will increase over the coming year resulting in all sorts of enterprise security breaches.

Guy
www.authenticationworld.com
guy.huntington@authenticationworld.com

Posted by Guy Huntington on November 4, 2006 1:42 PM |

TrackBack

TrackBack URL for this entry:
http://www.authenticationworld.com/cgi-bin/blog/mt-tb.cgi/32

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)