"Malware Developers Refresh Their Attack Tools"
An analysis conducted by the Cisco Talos research team further highlighted the continued advancement in the development of attack tools. The developers of these tools are making it increasingly difficult for defenders to detect and analyze their malware, thus increasing the complexity of infection chains. The researchers analyzed the latest version of the LokiBot malware, which is capable of stealing credentials and other sensitive information. They found that LokiBot's developers added a third stage to its process for compromising systems as well as an added layer of encryption to evade detection. The attack techniques associated with the LokiBot malware campaign also includes hiding code in images and tricking victims into enabling macros on Microsoft Office using social engineering tactics. The growing sophistication of LokiBot and other malware calls on the adoption of a multilayered approach to detecting attacks. This article continues to discuss the continued development of LokiBot malware to prevent analysis and detection, the advancement of other malware strains, and the importance of taking a multilayered approach to addressing the increasing sophistication of attack tools.
Dark Reading reports "Malware Developers Refresh Their Attack Tools"