Zero-day infections are common
Antivirus software running on your computer has one big weak point – if a new virus is released before the antivirus provider knows about it or before the next scheduled antivirus software update, your system can be infected. Such zero-day infections are common.
However, a key recent development in antivirus software is to incorporate built-in defences against viruses and other computer malware for which they have no prior knowledge. These defences usually respond to unusual activity that resembles the way viruses behave once they have infected a system. This so-called heuristic approach combined with regularly updated antivirus software will usually protect you against known viruses and even zero-day viruses. However, in reality, there are inevitably some attacks that continue to slip through the safety net.
Writing in a forthcoming issue of the International Journal of Electronic Security and Digital Forensics, researchers at the Australian National University, in Acton, ACT, and the Northern Melbourne Institute of TAFE jointly with Victorian Institute of Technology, in Melbourne Victoria, have devised an approach to virus detection that acts as a third layer on top of scanning for known viruses and heuristic scanning.
The new approach employs a data mining algorithm to identify malicious code on a system and the anomaly of behaviour patterns detected is predominantly based on the rate at which various operating system functions are being “called”. Their initial tests show an almost 100% detection rate and a false positive rate of just 2.5% for spotting embedded malicious code that is in “stealth mode” prior to being activated for particular malicious purposes.
The Latest Bing News on:
- Free Auditing Tool Helps Detect SolarWinds Hackers' Malwareon January 20, 2021 at 8:23 am
Security firm FireEye has released a free auditing and remediation tool on GitHub that it says can help organizations determine if the hacking group that targeted ...
- Coin-Mining Malware Volumes Soar 53% in Q4 2020on January 20, 2021 at 1:55 am
Detections of crypto-mining malware surged by 53% quarter-on-quarter in the final three months of 2020 as the value of Bitcoin soared, according to Avira. The price of one Bitcoin now stands at over ...
- A New SolarWinds Malware Strain Is Discoveredon January 19, 2021 at 8:10 pm
SolarWinds: it’s the hack that keeps on growing. On Monday, researchers announced the discovery of yet another malware strain used by foreign hackers to infiltrate a wide milieu of American government ...
- Researchers find new form of malware used in the SolarWinds attackon January 19, 2021 at 7:14 pm
Cybersecurity researchers have discovered a new malware strain that was used in the now-infamous hack of SolarWinds Worldwide LLC last year. Detailed Monday by researchers at Syma ...
- Fourth SolarWinds malware strain shows diversity of tacticson January 19, 2021 at 3:43 pm
While Teardrop was delivered by the original Sunburst backdoor in early July 2020, Raindrop was used just under two weeks later for spreading laterally across the victim’s network, Symantec said in a ...
- Linux Devices Under Attack by New FreakOut Malwareon January 19, 2021 at 11:30 am
The FreakOut malware is adding infected Linux devices to a botnet, in order to launch DDoS and cryptomining attacks.
- SolarWinds Malware Arsenal Widens with Raindropon January 19, 2021 at 8:43 am
An additional piece of malware, dubbed Raindrop, has been unmasked in the sprawling SolarWinds supply-chain attacks. It was used in targeted attacks after the effort’s initial mass Sunburst compromise ...
- Researchers Discover Raindrop — 4th Malware Linked to the SolarWinds Attackon January 19, 2021 at 7:06 am
Cybersecurity researchers have unearthed a fourth new malware strain—designed to spread the malware onto other computers in victims' networks—which was deployed as part of the SolarWinds supply chain ...
- FreakOut malware exploits critical bugs to infect Linux hostson January 19, 2021 at 4:48 am
An active malicious campaign is currently targeting Linux devices running software with critical vulnerabilities that is powering network-attached storage (NAS) devices or for developing web ...
- Fourth malware strain discovered in SolarWinds incidenton January 18, 2021 at 8:00 pm
Symantec said it identified Raindrop, the fourth malware strain used in the SolarWinds breach, after Sunspot, Sunburst, and Teardrop.
The Latest Google Headlines on:
The Latest Bing News on:
- How Managed Security Services Help You Get More from Your Existing PCson January 19, 2021 at 10:28 am
It’s time to rethink security with a cloud-based offering that takes advantage of artificial intelligence to detect and thwart threats.
- Week in review: Pen testing, Sunspot malware, Microsoft plugs Defender zero-dayon January 18, 2021 at 12:24 pm
Here's an overview of some of last week's most interesting news and articles: Top videoconferencing attacks and security best practices Videoconferencing ...
- Another zero day in NSW, as COVID-breaching Bondi party faces probeon January 18, 2021 at 7:10 am
NSW Police are investigating a party in North Bondi on Sunday that might have breached virus rules after a video emerged of a group dancing near the beach.
- ‘I never thought we would get there’: Australia’s year of Covid – from the first case to the first doughnut dayon January 16, 2021 at 5:03 pm
As vaccines are rolled out globally, Australia finds itself in an enviable position, thanks to a critical early response ...
- Does your Mac need antivirus software?on January 15, 2021 at 5:53 am
Go ahead and install that antivirus program on your Mac. Your system needs the protection -- and so does your sensitive personal information.
- IT Partners Security Chooses Comodo Solutions Over All Other Cybersecurity Solutions to Stop Zero Day Threatson January 15, 2021 at 4:18 am
IT Partners Security, a distributor based in Poland that services the central and eastern European markets, has been featuring Comodo, the world’s leader of next-generation cybersecurity to its ...
- TotalAV Antivirus Proon January 14, 2021 at 10:23 am
TotalAV lists for $99 per year to protect three PCs. That’s high—Bitdefender, ESET, and Kaspersky give you three licenses for $59.99, Webroot asks $49.99, and F-Secure goes for $39.99. McAfee ...
- Windows 10: Latest security patch fixes a zero-day vulnerabilityon January 14, 2021 at 12:02 am
Get this critical security update to Microsoft's Windows Defender now to patch a dangerous zero-day vulnerability.
- Windows 10 antivirus needs urgent patching after this flaw was foundon January 13, 2021 at 6:35 am
A new zero-day exploit has been discovered affecting Windows 10, alongside a number of other vulnerabilities affecting the Windows operating system. Perhaps the most worrying bug is being tracked as ...
- January 2021 Patch Tuesday: Microsoft plugs Defender zero-day RCEon January 12, 2021 at 1:53 pm
Patch Tuesday Microsoft has plugged 83 CVEs, including an actively exploited Microsoft Defender zero-day flaw.