Access your Pro+ Content below.
The changing face of advanced malware detection
This article is part of the February 2014 Vol. 16 / No. 1 issue of Information Security magazine
In the escalating arms race against advanced malware, many organizations require defenses to protect enterprise networks in real time that go beyond desktop endpoint virus scanners and network-based intrusion prevention products. Unfortunately for security organizations, advanced malware is getting harder to detect, thanks to the proliferation (more than 100) of automated online tools called "crypters" and "packers." Add to these exploits a range of new techniques that use social networks to establish trust, more use of in-memory attacks and ransomware. All of this means it is an increasingly nasty online world. Crypters and packers make it easier for criminals to create (within seconds) custom code destined for a particular desktop. The effect of this "individualized" approach is that signature scanners are ineffective, making zero-day attacks, such as the November Windows XP privilege escalation attack, increasingly difficult to stop. Ransomware is also becoming more popular, according to IT security firm Sophos. Note the ...
Access this Pro+ Content for Free!
Features in this issue
This February 2014 Information Security magazine supplement takes a deeper look into cyberthreats and examines advanced threat techniques including watering hole attacks and sophisticated spear phishing.
There's no place to hide as new cyberthreats and tried-and-true hacking techniques test security teams.
It's a new year of advanced threats, malicious code and holes to plug, but security teams are fighting back with help from global services.
Are employees using Tor to view blocked Web sites, or mining Bitcoins on corporate resources? Sinister or not, it needs to stop.
Columns in this issue
One month into the new year and we have already faced landmark data breaches. The advanced threats will keep on coming in 2014.
The influx of iPad and Android tablets and smartphones after the holidays can really challenge network security in organizations that support BYOD.
New survey shows the battle between corporate-issued devices versus personally owned smartphones and tablets is too close to call.
Throwing a curve: Is there a potential weakening of security products and services courtesy of the NSA and RSA BSafe?