Hackers are turning to new methods to hide malicious code away from security products.
Called dynamic code obfuscation, the technique is used by an attacker to hide a malicious payload away from signature-based security products such as anti-virus and web filters. Hackers use different strategies to hid malware including providing each visitor to a malicious site with a different instance of obfuscated malicious code, based on random functions and parameter name changes.
According to security company Finjan, such techniques would require a signature-based product to scan against millions of different signatures in order to detect the existence of this particular piece of malicious code and to block it.
"Dynamic code obfuscation techniques are the latest salvo from hackers in the ongoing battle of wits between security vendors and their hacker opponents," said Yuval Ben-Itzhak, Finjan's Chief Technology Officer.
"Over the years, each time a new type of attack appears in the wild, security companies scramble to create a solution. Then, as soon as the hackers become familiar with the newest defense, they devise a new method to circumvent it," he said.
He said that hackers have begun to take advantage of new web technologies to create complex and blended attacks.
"With their creation of dynamic obfuscation utilities, which enable virtually anyone to obfuscate code in an automated manner, they have dramatically escalated the threat to web security," he said.
-
Windows 10: Six essential steps IT teams should take over the next two monthsIndustry Insights With Windows 10 support ending soon, IT leaders must act now to mitigate risk
-
New chapter, same partners: Keeping the channel aligned with changeIndustry Insights How to maintain strong channel partnerships amid evolving strategies and market change
