Siberia Exploits Kit Is Now Still More Advanced
According to security investigators from M86 Security, the Siberia Exploits Kit's makers, seeking to enhance the rate of their success, have made their ware even more advanced.
It may be noted that Siberia is a kit to make exploits that was first spotted in 2009-end. Understandably, it succeeds the Napoleon Exploit Kit although it resembles the more widely used Eleonore toolkit both in appearance and functioning.
Explain the investigators that the creators of the Siberia Exploits Kit have made sure that their Kit's exploits are able to evade detection by URL filtering systems and anti-virus software, so they've incorporated an AV checker. Softpedia.com published this on November 30, 2010.
The AV checker is designed to provide the same feature as VirusTotal, which is a widely used Internet scanning utility that utilizes 43 signature-based AV programs for testing malicious payload on any file.
An interesting point here is that Siberia Exploits Kit is incapable of utilizing VirusTotal, as its pieces of malicious programs would instantly get transmitted to anti-virus agencies. So it utilizes one commercial but illegal facility called Scan4you.
Scan4you has 30 anti-virus programs, while for each scan it charges 0.15 cents. And the cost of a license for utilizing Scan4you spanning 30 days is $25 wherein the services offered are URL scanning; file scanning; exploit kit scanning where the toolkit's name is checked during URL filtering; and Filter/Blacklist scanning.
Worryingly, exploits kits similar to Siberia are the major reason why there's an explosion in the cyber-crime industry. Security specialists apparently acquiesce with this observation as is evident from their realization that toolkits making attack codes have brought about a transformation inside the cyber-crime sector rather quickly. Anyone is capable of executing an attack and yet not being aware of any code.
Moreover, according to the specialists, exploits kits are boosting the remarkably high rise in Internet-borne attacks like zero-day assaults and spam, while fresh kits emerge daily.
Meanwhile, M86 predicts that during 2011, the business of exploits kits will take-off as their creators are already offering services in addition/instead of conventional software offerings. Infosecurity.com reported this during the end-week of November 2010.
Related article: Spyware Detection Programs Track Advertisers’ Cookies
» SPAMfighter News - 13-12-2010