Thursday, May 13, 2021

Digitally Signed Malware Is Increasingly Prevalent, Researchers Say

Computerworld: Security companies say they’re seeing an increase in malware signed with fraudulent digital certificates. The Stuxnet worm was one of the first to use the technique, and now other malware creators have adopted the tactic. Costin Raiu of Kaspersky Labs explained that malware with a digital certificate is particularly troublesome because “signed modules are more likely to be included in whitelisting collections, meaning the chance of them being fully analyzed is lower and they remain undetected for longer period of times.”

In some cases, the hackers use forged certificates, but in others they use stolen certificates, which are particularly difficult to block. If legitimate software is signed with the same credentials, companies cannot simply revoke the certificate or everyone who uses the legitimate software will find that it stops working.

Similar articles

Latest Articles

Database-Tuning Platform Launches and...

PITTSBURGH — A team out of Carnegie Mellon University is launching its automatic database-tuning product today with the help of $2.5 million in funding.   OtterTune,...

Top 10 Professional Services...

Professional services automation (PSA) software aims to offer service-based companies most of the software they will need to run their businesses in one package....

What is Data Aggregation?

Data aggregation is the process where raw data is gathered and presented in a summarized format for statistical analysis. The data may be gathered...

Dell APEX: Our...

One of the missteps IBM made last century was collapsing their sales model, which was services based, to generate a short-term revenue spike. Up...