In an attacks used the new options of vulnerability (CVE-2012-0158) aimed at workstations and a number of large corporations in the world.
The attacks began with phishing e-mails purporting to be from Citibank and Bank of America. In the very letters in which the subject was given «Merchant Statement» or anything like that, recipients are invited to open an infected attachment in a format Microsoft Word.
But the statement did not contain an attachment, a malicious application that is to be started automatically when you open, infecting the computer receiving and transmitting a large botnet control over it. A unique aspect of these attacks was that the malware was able to open network ports to steal the user's credentials (usernames and passwords), as well as act as a self-propagating spam-bot, ready to meet the new regulations for the attack, as well as sending malicious e- letters to other victims.
"Cyber criminals are constantly initiating new attacks every day thousands of spreading malware variants - said Dorit Dor, vice president of products at Check Point. - Traditional antivirus programs are powerless when it comes to previously unknown threats. "
"Organizations need a multi-level security system, including threats of emulation technology that can detect and prevent new attacks and to cope with the existing options," - adds Dor.
No comments:
Post a Comment