|By Business Wire||
|December 5, 2012 09:35 AM EST||
Trusteer, the leading provider of endpoint cybercrime prevention solutions, today released the Top Five Most Dangerous Malware Trends for 2013. According to Trusteer’s security research group the biggest threats facing financial institutions and enterprises next year will include attacks against the Google Chrome Browser, the emergence of native 64-bit Windows malware and crimeware that can detect and evade virtual machine, sandboxing, and other containment mechanisms. An infographic that summarizes the findings is available here.
“2012 was characterized by the increasing sophistication of malware’s ability to evade detection and the beginning of financial fraud platforms like Zeus, SpyEye and others crossing over to attack enterprise endpoints,” said Amit Klein, CTO of Trusteer and head of the company’s security research group. “We expect criminals to continue to innovate in 2013 and step up attacks against enterprises. Our researchers have identified evidence of what we believe will be the top five most dangerous trends in malware next year, including Google attacks, native 64-bit Windows malware and increasingly advanced evasion techniques.”
Five Most Dangerous Malware Trends of 2013
1) The emergence of malware targeting the Google Chrome browser
In 2012, Citadel and Zeus 2.1 (aka P2P Zeus, Gameover Zeus) began targeting Google Chrome with Man in the Browser (MitB) attacks.
Why it's dangerous: Google Chrome is no longer immune to MitB malware.
2) The emergence of native 64-bit Windows malware
In 2012, we began seeing financial malware developing native 64-bit Windows capabilities.
Why it's dangerous: 32-bit malware is handicapped when it runs on 64-bit machines. That’s because the 32-bit malware cannot see or penetrate the “native” 64-bit system processes it uses to evade detection. As malware variants start supporting 64-bit processes, they will once again be difficult to detect on 64-bit machines.
3) Detection-aware malware targeting enterprises
In 2012, both financial and non-financial malware variants were discovered that could detect virtualization, debugging, sandboxing and monitoring processes on the host machine. For example, a recent Shylock variant will not install when it detects a Remote Desktop session, most likely to avoid detection in a “lab” environment.
Why it's dangerous: These capabilities present a serious threat to virtual machine-based detection and protection products, since the malware would appear to be harmless to these security tools.
4) Big increase in new and modified financial malware families
In 2012, the number of completely new financial malware families almost doubled from three in 2011 to five in 2012. It’s important to note that many different configurations (variants) can exist within one malware family. We expect this trend to continue with even more new malware families introduced next year.
Why it's dangerous: More financial malware families mean more infections, longer detection times, and consequently more financial fraud incidents.
5) Malware lifecycle is accelerating
In 2012, the four phases of the malware lifecycle (incubation, outbreak, botnet and retirement) among the variants we investigated accelerated significantly compared to 2011. Because security products continue to improve detection, the window of opportunity for malware to remain undetected is decreasing. The incubation and outbreak phases decreased from one month or more in 2011 to approximately two weeks in 2012. We expect this time frame to shrink even further next year.
Why it's dangerous: The faster the malware lifecycle, the more difficult it is for security products to detect, block and remove malicious software. In an accelerated lifecycle environment, the fraud is already committed before traditional anti-virus/anti-malware products discover the malware.
Boston-based Trusteer is the leading provider of endpoint cybercrime prevention solutions that protect organizations against financial fraud and data breaches. Hundreds of organizations and millions of end users rely on Trusteer to protect their computers and mobile devices from online threats that are invisible to legacy security solutions. Trusteer’s Cybercrime Prevention Architecture combines multi-layer security software with real-time threat intelligence to achieve sustainable protection against malware and phishing attacks and meet regulatory compliance requirements. Global organizations such as HSBC, Santander, The Royal Bank of Scotland, SunTrust and Fifth Third use Trusteer’s solutions and leading online banking providers such as First Data, Harland Financial Solutions, Intuit and S1 integrate with Trusteer to provide world-class protection for financial institutions of all sizes. www.trusteer.com.
- Innodisk | Efficiencies for Cloud Hardware at Cloud Expo New York
- Join Gartner, IBM, + AWS at AppSphere and save $200 when you register in August!
- In 2014 Big Data Investments Will Account for Nearly $30 Billion - Eventually Accounting for $76 Billion by 2020 End
- Global Cloud Security Market Growing at 15.7% CAGR to 2020: Forecast & Analysis in Research Report Available at ReportsnReports.com
- Video: DevOps and Security
- Worldwide Indoor Location Market Growing at 46.0% CAGR to 2019 Says a New Research Report Available at RnRMarketResearch.com
- Flexera Software's InstallAnywhere 2014 Simplifies Multi-Platform Installation for Physical, Virtual and Cloud Environments
- Mobility News Weekly – Week of August 3, 2014
- Searchmetrics Drives Over 200% World-Wide Growth As More Business Leaders Begin To Recognize The Value Of Search
- Mobility News Weekly – Week of August 17, 2014
- Digital Transformation's Impact on Enterprise Mobility and App Design Strategies
- Web Analytics Market by Solution (Search Engine Tracking & Ranking, Heat Map Analytics, Marketing Automation, Behavior Based Targeting) & by Services (Professional Services, Support & Maintenance) - Worldwide Forecasts & Analysis (2014 - 2019)
- Mobile Commerce News Weekly – Week of August 3, 2014
- Red Hat To Present At Internet of @ThingsExpo
- Mobile Cyber Security News Weekly – Week of August 10, 2014
- Where Are RIA Technologies Headed in 2008?
- Dolphin Announces Open API With Over 50 Add-ons Including Dropbox and Wikipedia
- Cloud People: A Who's Who of Cloud Computing
- 21st century Modern Alarm systems continue to play a key role in various institutions and industries
- SEO/SEM Tips & Tricks: How and When Should You Submit Your Website to Google?
- Cloud Expo 2011 East To Attract 10,000 Delegates and 200 Exhibitors
- Tips For Press Releases in Reputation Management from Industry Veteran Brandon Hopkins
- Yahoo! to Keynote 4th Cloud Expo: Accelerating Innovation with Cloud Computing
- Google Version 2.0: Googzilla - The Calculating Predator
- ManageWP Powers Over 100,000 WordPress Sites Within Three Months of Launch
- Ulitzer’s Amazing First 30 Days in Public Beta
- Google's Competitive Advantage: It Leverages "The Power of Free"
- Ulitzer vs. Ning - a Quick Review
- AOL To Enhance Video Search Engine by Adding RSS Feeds
- Confessions of a Ulitzer Addict