« Ten Security trends to think about
North Korea – The Worst Internet Black Hole »

Hackers able to hide attack code for browsers

Published October 29th, 2006 in Hackers, Malware

Yesterday, we talked about how hackers are constantly on the lookout to discovering ways to hide their malicious software from security tools on computers. Well, it looks like they are on the brink of creating one: the eVade O’ Matic Module. Read more about it below:

Hackers are developing new software that will help hide browser attack code from some types of security software.

The software, called VoMM (eVade o’ Matic Module), uses a variety of techniques to mix up known exploit code so as to make it unrecognizable to some types of antivirus software.

Using these techniques, VoMM “can create an endless number of variants of an exploit,” said Aviv Raff, one of the developers behind the project.

“It aims to provide several techniques out of the box to make browser exploits (mostly) undetectable,” according to a blog posting by one of the project’s founders, a hacker going by the name of “LMH.” That posting can be found target=_blank”>here.

The software users server-side scripting technology to create new versions of the exploit code, which then get delivered to browser users when they visit the attacker’s Web site. By making a number of cosmetic changes to the code that do not affect its functionality, VoMM creates a new version of the malicious software that cannot be detected by “signature-based” techniques.

Signature-based antivirus products analyze known malware and then create a digital fingerprint that allows the antivirus software to identify malicious code. By adding extra components — tabs and spaces, and random comments and variable names — that are not included in known signatures, VOMM creates software that can evade detection.

Read the rest of this article HERE.

To us, this is good news. Why? Well think about it; hackers are developing this new project to hide attack code from browsers, yet, before it is even completed, we are already learning about it in the news. If the news is public, it is a surefire way for security groups to learn about it and help discover patches. Gotta love the Internet.

Tags: Hackers, Malware

Quickly bookmark Hackers able to hide attack code for browsers at:    Bookmark Hackers able to hide attack code for browsers at del.icio.us    Digg Hackers able to hide attack code for browsers at Digg.com    Bookmark Hackers able to hide attack code for browsers at Spurl.net    Bookmark Hackers able to hide attack code for browsers with wists    Bookmark Hackers able to hide attack code for browsers at Simpy.com    Bookmark Hackers able to hide attack code for browsers at NewsVine    Blink this Hackers able to hide attack code for browsers at blinklist.com    Bookmark Hackers able to hide attack code for browsers at Furl.net    Bookmark Hackers able to hide attack code for browsers at reddit.com    Fark Hackers able to hide attack code for browsers at Fark.com    Bookmark Hackers able to hide attack code for browsers at blogmarks    Bookmark Hackers able to hide attack code for browsers at YahooMyWeb

No Responses to “Hackers able to hide attack code for browsers”  

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must log in to post a comment.