"A Quarter of All Malicious JavaScript Is Obfuscated"

Security researchers at Akamai analyzed 10,000 malicious JavaScript samples that represent threats such as malware droppers, phishing pages, scammers, cryptomining malware, and more. The analysis revealed that at least 25 percent of the samples used JavaScript obfuscation methods to evade detection. According to the researchers, this finding suggests the continued adoption of obfuscation techniques by cybercriminals to remain undetected. They call on the use of more advanced Machine Learning (ML) techniques to detect malicious obfuscation. These ML techniques should enable the differentiation between malicious and benign obfuscated JavaScript. The researchers also say an approach to detection should use additional indicators and automatically consider obfuscated code as suspicious until proven otherwise. This article continues to discuss key findings from Akamai's analysis of malicious JavaScript samples.

ITPro reports "A Quarter of All Malicious JavaScript Is Obfuscated"

Submitted by Anonymous on Wed, 10/20/2021 - 12:08