Dark Reading: Malware Encryption Efforts Mixed, But Getting Stronger

/Home/Internet Security: Articles/Internet Security: Dark Reading/Dark Reading: Vulnerabilities & Threats

Russian botnets mostly use crypto, Chinese attacks mostly don't, but attack analysis finds that the bad guys are increasingly using better encryption

Apr 10, 2012
By Robert Lemos

When a new software threat is discovered, reverse engineers dig into the code to find ways to detect the attack, identify the code and its authors, and discover the purpose behind the malware.

Such investigations pit the digital detectives who reverse engineer malicious programs against the developers who created the malware. In the cat-and-mouse game, reverse engineers can easily find copies of the software to crack open and analyze, and attackers respond by throwing up a number of hurdles to slow down analysts' efforts. Chief among the roadblocks are encryption and obfuscation.

Click the URL above to read the full article