Colossal Malware Attacks Strike Staples Corporate Systems
McAfee, Sophos and Symantec all recently cautioned as regards a novice and additionally dangerous kind of the Changeup virus detected in last November. Last week (in the first week of April 2013), Framingham, Massachusetts-based office supply firm Staples became the latest major victim.
Changeup is a malicious software with Trojan like features. Additionally, it is polymorphic in nature which can be distinguished as an advance persistent threat or APT, and it shows likely that Staples is facing difficulty in operating and clearing its system.
The worm disperses via detachable drives and drives which have the potentiality to get mapped, and the worm's writer continually modifies it, making it hard for AV and several network security tools to save it from compromising systems. The Trojan installs file-sharing software detachable storage drives and hiked network shares and duplicates itself in the shared folder, which rapidly spreads it via corporate endpoint systems, claims Marc Maiffret, Chief Technical Officer of California-based ID and Threat Management Firm BeyondTrust, as per a statement published by crn.com dated April 5, 2013.
"Malware doesn't distinguish between users and corporations," Maiffret explains. "If enterprises were performing right things e.g. egress filtering to manage executables coming within and exiting the environment, companies should be proficient enough to ease this kind of malware," Maiffret continues.
In most of the cases, companies' segregate network drives from machines including more insightful data, but even network drives can and often include sensitive data, he said. However, several times companies overlook even the fundamentals of using antivirus on network drives due to performance factors or lack of knowing of how to execute it properly, Maiffret said.
In the end, from the beginning of this year, Framingham, Mass-based, Staples is not the only company to experience data breach in US .Back in February 2013, Bashas', an Arizona-based grocery chain exposed that it was the victim of a cyber-attack through which the perpetrators emerged to have gained access to customers' payment-card information. Further, in January 2013, famous restaurant chain Zaxby's located in Georgia (US) also supposed that it had detected malware strains on the computers of more than hundreds of its establishments.
» SPAMfighter News - 18-04-2013