A new malware called CowelSnail that is a backdoor trojan targeting Windows is just the latest in a series of sophisticated malware impacting the market. Michael Patterson, CEO at Plixer commented below.
Michael Patterson, CEO at Plixer:
“The Internet community is facing a difficult truth. Prevention companies cannot stop all malware and certainly not targeted attacks. Operating systems will never be completely patched which means new exploits will constantly be discovered and utilized by cyber villains. Utilizing black lists that allow security teams to monitor for internal hosts reaching out to known C&C servers are never complete. To improve a company’s security posture, C-level managers need to make some tough decisions. They need to completely control what applications are allowed on any device that attaches to the corporate network. Once in force, it becomes much easier for security teams to monitor for unwanted communication patterns such as the use of low and slow Internet uploads, requests to unauthorized DNS servers, DNS tunneling, odd authentication patterns, etc. These are all behaviors that most infections take advantage of in order to carry out their dastardly deeds. By taking a baseline of what is normal, security teams can uncover abnormal behaviors caused by malware much more easily.”
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.