A new backdoor malware called Mozart is using the DNS protocol to communicate with remote attackers to evade detection by security software and intrusion detection systems. The researchers have discovered that the malware uses DNS to receive instructions from attackers and to evade detection. Typically when a malware phones home to receive commands that should be executed, it will do so over the HTTP/S protocols for ease of use and communication but this can be detected by security software.
New Mozart Malware Gets Commands, Hides Traffic Using DNS – by @LawrenceAbramshttps://t.co/mJPukTckoD
— BleepingComputer (@BleepinComputer) February 24, 2020
Experts Comments
Linkedin Message
@Chris Clements, VP, provides expert commentary at @Information Security Buzz.
"However, the DNS protocol itself is unencrypted and is much easier to monitor than encrypted HTTPS. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/newly-composed-mozart-malware-found-to-be-highly-evasive-expert-insight
Facebook Message
@Chris Clements, VP, provides expert commentary at @Information Security Buzz.
"However, the DNS protocol itself is unencrypted and is much easier to monitor than encrypted HTTPS. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/newly-composed-mozart-malware-found-to-be-highly-evasive-expert-insight
Linkedin Message
@James McQuiggan, Security Awareness Advocate, provides expert commentary at @Information Security Buzz.
"This kind of attack is like buying a suitcase...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/newly-composed-mozart-malware-found-to-be-highly-evasive-expert-insight
Facebook Message
@James McQuiggan, Security Awareness Advocate, provides expert commentary at @Information Security Buzz.
"This kind of attack is like buying a suitcase...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/newly-composed-mozart-malware-found-to-be-highly-evasive-expert-insight
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Andre Gironda, VP, provides expert commentary at @Information Security Buzz.
"This new Mozart must not be confused with this older, unrelated variety...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/newly-composed-mozart-malware-found-to-be-highly-evasive-expert-insight
Facebook Message
@Andre Gironda, VP, provides expert commentary at @Information Security Buzz.
"This new Mozart must not be confused with this older, unrelated variety...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/newly-composed-mozart-malware-found-to-be-highly-evasive-expert-insight