Zero-day infections are common
Antivirus software running on your computer has one big weak point – if a new virus is released before the antivirus provider knows about it or before the next scheduled antivirus software update, your system can be infected. Such zero-day infections are common.
However, a key recent development in antivirus software is to incorporate built-in defences against viruses and other computer malware for which they have no prior knowledge. These defences usually respond to unusual activity that resembles the way viruses behave once they have infected a system. This so-called heuristic approach combined with regularly updated antivirus software will usually protect you against known viruses and even zero-day viruses. However, in reality, there are inevitably some attacks that continue to slip through the safety net.
Writing in a forthcoming issue of the International Journal of Electronic Security and Digital Forensics, researchers at the Australian National University, in Acton, ACT, and the Northern Melbourne Institute of TAFE jointly with Victorian Institute of Technology, in Melbourne Victoria, have devised an approach to virus detection that acts as a third layer on top of scanning for known viruses and heuristic scanning.
The new approach employs a data mining algorithm to identify malicious code on a system and the anomaly of behaviour patterns detected is predominantly based on the rate at which various operating system functions are being “called”. Their initial tests show an almost 100% detection rate and a false positive rate of just 2.5% for spotting embedded malicious code that is in “stealth mode” prior to being activated for particular malicious purposes.
The Latest on: Malware
- Google's security measures failed to find Android malware in Play Storeon March 24, 2020 at 5:05 pm
Google may have introduced a number of security measures to prevent malicious apps from appearing in the Play Store, but they're not watertight. New analysis from Check Point show ...
- Malware found lurking in kids' Play Store apps, security firm findson March 24, 2020 at 10:17 am
Google removed more infected apps.
- Researchers Find Android Apps for Kids Riddled With Malwareon March 24, 2020 at 8:07 am
It’s a familiar story: Security researchers find apps in Google’s Play Store that are infected with some sort of malware, which eventually get pulled. Well, it’s happened again. This time, a new type ...
- Microsoft's Windows 10 warning: Astaroth malware is back. This time it's even stealthieron March 24, 2020 at 4:49 am
Astaroth, a group that uses legitimate Windows tools to spread malware, has retooled after Microsoft drew attention to its living-off-the-land techniques last July. The group in February stepped up ...
- Fake Corona Antivirus Software Used to Install Backdoor Malwareon March 23, 2020 at 4:15 pm
If anyone would fall this, they would end up downloading an installer from antivirus-covid19[.]site/update.exe (link is now down) that will deploy the BlackNET malware onto their systems if launched.
- HHS.gov Open Redirect Used by Coronavirus Phishing to Spread Malwareon March 23, 2020 at 10:37 am
An HHS.gov open redirect is currently being used by attackers to push malware payloads onto unsuspecting victims' systems with the help of coronavirus-themed phishing emails. Open redirects are web ...
- Town of Jupiter hit by malware 'incident'on March 23, 2020 at 8:21 am
The town of Jupiter said Monday morning they were hit by a malware attack, crashing “several” online services including their email. In a tweet just after 11 a.m., the town said, “due to a malware ...
- 4 ways to fight back against coronavirus phishing and malware attackson March 23, 2020 at 6:00 am
Sadly, with the widespread media attention around the coronavirus, attackers are already using the topic to bait victims into opening malicious attachments. Researchers at IBM X-Force have identified ...
- CleanMyMac X: The in-depth malware scrubber even a Mac user can get behindon March 20, 2020 at 6:00 am
CNN Underscored partnered with MacPaw to create this content. When you make a purchase, CNN receives revenue. CNN news staff is not involved in the selections or product reviews. For more on what we ...
- Libya-based hackers using coronavirus pandemic to spread mobile surveillance malwareon March 18, 2020 at 2:36 pm
For months now, cybercriminals have used coronavirus-themed emails, messages and software to trick people into downloading malware and other malicious programs designed to steal information and harm ...
via Google News and Bing News