Menu
Zeus malware uses techniques both new and old: Websense

Zeus malware uses techniques both new and old: Websense

Security vendor discovers evolved strain that uses various methods to stay hidden

A recently evolved Zeus strain is borrowing techniques both old and new to evade detection, according to Websense Security Labs.

Websense A/NZ country manager, Gerry Tucker, said the mixture of techniques is also used to siphon and steal important data from the infected.

“Malware writers will continue to adapt and update their evasion techniques to stay just above the capabilities of most security solutions,” he said.

An old approach Zeus uses is the hidden Windows PIF file extension executable, a technique Tucker said was once popular and seems to be making a comeback.

In with the new

A new thing the malware does is evolve and adapt the methodology of the information stealing procedures, known as hooking, which has evolved from the Zberp variant.

“The malware’s of use of encryption and HTTPS in its command-and-control communications underscores their efforts and attempts to stay hidden,” Tucker said

Tucker adds the latest iteration of the Zeus malware demonstrates the evolving techniques of cybercriminals’ efforts to evade detection.

“This is one reason that it is now crucial for defenders to have security tools that inspect outbound SSL traffic and prohibit the loss of data through encrypted messages,” he said.

Read more: Is it possible to create bug-free software?

Patrick Budmar covers consumer and enterprise technology breaking news for IDG Communications. Follow Patrick on Twitter at @patrick_budmar.


Follow Us

Join the newsletter!

Error: Please check your email address.

Tags zeussecuritywebsensemalware

Featured

Slideshows

Sizing up the NZ security spectrum - Where's the channel sweet spot?

Sizing up the NZ security spectrum - Where's the channel sweet spot?

From new extortion schemes, outside threats and rising cyber attacks, the art of securing the enterprise has seldom been so complex or challenging. With distance no longer a viable defence, Kiwi businesses are fighting to stay ahead of the security curve. In total, 28 per cent of local businesses faced a cyber attack last year, with the number in New Zealand set to rise in 2017. Yet amidst the sensationalism, media headlines and ongoing high profile breaches, confusion floods the channel, as partners seek strategic methods to combat rising sophistication from attackers. In sizing up the security spectrum, this Reseller News roundtable - in association with F5 Networks, Kaspersky Lab, Tech Data, Sophos and SonicWall - assessed where the channel sweet spot is within the New Zealand channel. Photos by Maria Stefina.

Sizing up the NZ security spectrum - Where's the channel sweet spot?
Show Comments