Targeted Trojan attacks on the rise

Targeted Trojan attacks on the rise
Robert Lemos, SecurityFocus 2006-10-13

MONTRÉAL - On December 1, 2005, two e-mail messages were sent from a computer in Western Australia to members of two different human rights organizations. Each e-mail message carried a Microsoft Word document with a previously unknown exploit that would take control of the targeted person's computer and open up a beachhead into the group's network.

Targeted Trojan attacks on the rise 2006-10-16
DeadOnArrival

I attended a presentation from the guys at Norman antivirus, and they had a sandbox analyzing the behaviour of the files, and had behavioural patterns to match viruses. These were typically "decrypts itself, contact some ftp and downloads some file".

This could work better than signature driven ant...

[ more ]