Mutate, fragment, hide: The new hacker mantra

Hackers working for criminal gain are using increasingly sophisticated methods to ensure that the malware they develop is hard to detect and remove from infected systems, security researchers warned at this week’s Computer Security Institute (CSI) trade show in Orlando. The most popular of these approaches involve code mutation techniques designed to evade detection by signature-based malware blocking tools; code fragmentation that makes removal harder; and code concealment via rootkits. Unlike mass-mailing worms such as MS Blaster and SQL Slammer, most of today’s malware programs are being designed to stick around undetected for as long as possible on infected systems, said Matthew Williamson, principal researcher at Sana Security Inc.

click here for article

This entry was posted on Saturday, November 11th, 2006 at 9:30 am and is filed under General interest. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.