Cyber-Criminals Challenged with Improved Detection Make their Malware Better

With malware continuously proving successful, threat prevention and detection methodologies have become better; however, cyber crooks are pushed towards developing still newer techniques only to beat security companies, caution the specialists. In.techradar.com published this in news on September 2, 2015.

According to Sanjay Katkar, Chief Technology Officer (CTO) of Quick Heal the provider of IT security systems, currently his company has spotted one fresh malicious program dubbed APT-QH-4AG15, which manages in getting around 'sandbox' protection installed on PCs belonging to several large, medium and small-sized businesses. In.techradar.com published this in news.

The said malicious program's knowledge first spread within The Philippines where it was used to attack the country's financial institutions; however according to Katkar, no single sandbox protected gateway equipment was left unaffected.

Following a thorough examination of the particular malware, security researchers found that the program especially contaminated networks that had extreme safeguard systems. There were as well many capabilities incorporated into the program that defeated sandbox protection. Katkar adds that all of the above can pose to make one big threat to information technology companies.

He explains that the reason for sandbox-protected equipments' initial success was that malicious software items were disassociated from such safeguard techniques. Rather these software items' focal design was to manage breach conventional firewall as well as anti-virus programs, which was frequently done with rapid 0-day assaults.

Katkar reiterates that since enterprises are increasingly utilizing sophisticated sandbox-protected techniques for their equipments, cyber criminals are designing fresh malware samples that would breach the said protection mechanism. Loop21.com reported this in news on August 31, 2015.

According to Katkar, organizations require considering and enforcing more than one phase of protection for keeping their networks off security threats.

He highlights the belief of FireEye as well as other security companies which is that today's EPS (end-point protections) and anti-virus software have become non-effective. Actually, today's malware is chiefly crafted, tested and let loose for penetrating EPS.

Hence, with malware variants created for evading security solutions of the sandbox type and others, these can enter computer networks and people's inboxes without any difficulty, Katkar warns in conclusion.

» SPAMfighter News - 9/11/2015