Welcome to Scribd!

21st Century Malware Threatscape: 15 Years of Evolution

Uploaded by

0% found this document useful (0 votes)

30 views16 pages

Malware has evolved significantly over the past 15 years from simple viruses to complex malware using techniques like encryption and obfuscation to avoid detection, while infection vectors have expanded from physical media to online methods like email attachments and drive-by downloads; the effects of infections have also become more harmful, changing from minor annoyances to modern threats like ransomware and password theft; independent testing of security products is important to evaluate their ability to detect this evolving malware threat landscape.

Original Description:

Original Title

2009-07-21_3_Andrew_Hayter

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

30 views16 pages

21st Century Malware Threatscape: 15 Years of Evolution

Uploaded by

dcbvapor

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 16

Search inside document

21st Century Malware

Threatscape
15 Years of Evolution
Andy Hayter
Anti-Malcode Program Manager
ICSA Labs
Introduction
• Andy Hayter – Anti-Malcode Program
Manager – ICSA Labs
– Anti-Virus, Anti-Spyware, PC Firewall, HIPS
– 25 years experience
• Anti-Virus Product Marketing & Product Manager
• Security Vendors
• End-User
• Anti-Malware Testing Programs
ICSA Labs Overview
Who We Are Independent Third Party
+ Validation
Global leader and
Neutral and
defacto standard in
+ Testing
the private sector for
security product / Vendor
Agnostic
services / solutions
Research
assurance through
&
testing and
Analysis
certification.
Current Product Certification Programs

• 2009 – Complex – obfuscated, packed,

encrypted, multiple vectors
Varieties of Malware
• Virus
• Worm
• Bot
• Trojan
• Rootkit
• Spyware
• Spam
Vectors of Infection
Yesterday Today
• Sneaker Net • E-mail Attachments
• Boot Disks • Drive-by Downloads
• Pre-packaged • XSS
Software • Social Engineering
• Home à Work • Botnets
Effects of Infection
Yesterday Today
• Corrupted Hard Drive Ransomware
• Political Message Keylogger
• P.O.C
Password Stealer
• Fun
Crimeware
€£ P $
Is it In-The-Wild?
Targeted Attacks
• Regional
• Industry
• Company
• Government
Analysis
2009
• 1997 – 10,000 known
viruses

• 2009 - >10,000 new

per day
1997

Traditional Analysis cannot keep up with rate at which new

malware appears.
What can you do about it?
• EDUCATION à (ISC)2
• Policy – Develop, Test and Enforce
• End-User Education
• Patch, Patch, Patch
• Outside, 3rd Party, Independent External
Assessment of Security Solutions
Testing and Certification
• Security Products
– Tested
– Certified
by a Credible Laboratory such as
Data Breaches and Malware
Perfect Together
• Greater than One-Third of Data Breaches
Involved Malware

Source: 2008 Data Breach Investigations Report

Verizon Business
www.verizonbusiness.com/resources/security/databreachreport.pdf
Investigative Analysis
• ICSA Labs – conducted
major portion of
malware analysis

• à What was the

malware looking for
• à What is/or could have
been the impact
Questions?
Click on the questions tab on your screen, type in your question, name
and e-mail address; then hit submit.

m7 Presentation
Document13 pages
m7 Presentation
api-526409506
No ratings yet
Module - 4: Cyber Network Security Concepts
Document65 pages
Module - 4: Cyber Network Security Concepts
Shruthi Reddy
No ratings yet
Rapid7 Penetration Testing Services Brief
Document2 pages
Rapid7 Penetration Testing Services Brief
ellococareloco
No ratings yet
New 4
Document281 pages
New 4
Luna Charoline
100% (3)
My Notebook
Document45 pages
My Notebook
Betla Prasanth
No ratings yet
Labs PenTesting Fundamentals Coalfire
Document38 pages
Labs PenTesting Fundamentals Coalfire
kingnachi
No ratings yet
KB4-MasterClassRansomwareMitigation Slides
Document67 pages
KB4-MasterClassRansomwareMitigation Slides
alexandresousa090909
No ratings yet
Insiderthreats 150305131515 Conversion Gate01
Document14 pages
Insiderthreats 150305131515 Conversion Gate01
Anoop Pattat
No ratings yet
KB4-MasterClassRansomwareMitigation Slides
Document69 pages
KB4-MasterClassRansomwareMitigation Slides
Jetob
No ratings yet
Deep Discovery Inspector 3.8 Release
Document21 pages
Deep Discovery Inspector 3.8 Release
repotec
No ratings yet
Cyber Security
Document24 pages
Cyber Security
preetha joseph
No ratings yet
Ds DD Inspector
Document2 pages
Ds DD Inspector
zain_zedan
No ratings yet
Session 3 - Cyber Security - Oct 30
Document36 pages
Session 3 - Cyber Security - Oct 30
u9830120786
No ratings yet
Vulnerability Assessment: Reducing The Risk
Document7 pages
Vulnerability Assessment: Reducing The Risk
RumelaSamantaDatta
No ratings yet
Cybersecurity - Industry Perspective
Document81 pages
Cybersecurity - Industry Perspective
jayantascribe
No ratings yet
Interscan Messaging Security Solutions: Filip Demianiuk
Document36 pages
Interscan Messaging Security Solutions: Filip Demianiuk
raed messaoudi
No ratings yet
Interscan Messaging Security Solutions: Filip Demianiuk
Document36 pages
Interscan Messaging Security Solutions: Filip Demianiuk
raed messaoudi
No ratings yet
Cyber Espionage, Infiltration and Combating Techniques: - by Atul Agarwal & CERT-IN
Document22 pages
Cyber Espionage, Infiltration and Combating Techniques: - by Atul Agarwal & CERT-IN
yawahab
No ratings yet
Presentation Deck - Full Slides
Document33 pages
Presentation Deck - Full Slides
Ethan Hunt
No ratings yet
Rapid7 Penetration Testing Services Brief PDF
Document2 pages
Rapid7 Penetration Testing Services Brief PDF
ellococareloco
No ratings yet
Symantec Advanced Threat Protection PDF
Document31 pages
Symantec Advanced Threat Protection PDF
dafa13
No ratings yet
Intrinium Services
Document8 pages
Intrinium Services
G S
No ratings yet
Security 101: Training, Awareness, and Strategies Stephen Cobb, CISSP Senior Security Researcher Eset Na
Document41 pages
Security 101: Training, Awareness, and Strategies Stephen Cobb, CISSP Senior Security Researcher Eset Na
Christen Castillo
No ratings yet
Latest Antiviruses
Document12 pages
Latest Antiviruses
please read
No ratings yet
Information On Cyber Threats and Risks 20160331
Document33 pages
Information On Cyber Threats and Risks 20160331
vdimeska
No ratings yet
1 Introduction PDF
Document59 pages
1 Introduction PDF
scet 315
No ratings yet
Cyber Security
Document25 pages
Cyber Security
Edwin Kimori
No ratings yet
KES Enterprise Datasheet
Document4 pages
KES Enterprise Datasheet
Alexandro
No ratings yet
Mageni - Groundbreaking Vulnerability Scanning and Vulnerability Management Solution
Document2 pages
Mageni - Groundbreaking Vulnerability Scanning and Vulnerability Management Solution
Lucas Martinez
No ratings yet
Malware PDF
Document33 pages
Malware PDF
Prashant Kumar Class 8th
No ratings yet
Trend Micro Deep Discovery Inspector
Document3 pages
Trend Micro Deep Discovery Inspector
haivadi
No ratings yet
Sandblast Battle Card
Document3 pages
Sandblast Battle Card
Gfact Mail
No ratings yet
3 Endpoint PDF
Document70 pages
3 Endpoint PDF
ujang.pantry
No ratings yet
Chapter 1
Document34 pages
Chapter 1
Mohammad Islam
No ratings yet
Miercom Preso Interop NYC NGFW ATP 0900 1OCT2014
Document39 pages
Miercom Preso Interop NYC NGFW ATP 0900 1OCT2014
lugmaref
No ratings yet
Mooc 4
Document17 pages
Mooc 4
Sparsh Dhama
No ratings yet
Ahmad - Mohd - Khairuln: Faiza Zuhaimi Aqib Ahmad Faritz
Document14 pages
Ahmad - Mohd - Khairuln: Faiza Zuhaimi Aqib Ahmad Faritz
Ahmad Faiza Suka Suki
No ratings yet
Innovative Solutions Hub For The Future: Introduction To VAPT - What, Why, When
Document19 pages
Innovative Solutions Hub For The Future: Introduction To VAPT - What, Why, When
binojkoshy
No ratings yet
Introduction To The Microsoft Security Development Lifecycle (SDL) .PPSX
Document30 pages
Introduction To The Microsoft Security Development Lifecycle (SDL) .PPSX
Anonymous 6Rf5ZA2
No ratings yet
Sourcefire BRKSEC-1030
Document112 pages
Sourcefire BRKSEC-1030
Raja Athi
No ratings yet
Cyber Security
Document178 pages
Cyber Security
RenGoku
0% (1)
3vulnerability Management DICT
Document41 pages
3vulnerability Management DICT
LGU GALIMUYOD
No ratings yet
2 - C235 LP1 Lecture 2.2 - Malware Protection and Prevention
Document20 pages
2 - C235 LP1 Lecture 2.2 - Malware Protection and Prevention
Sundeel Bin Haleem
No ratings yet
Information Security: Barbarians at The Gateway (And Just About Everywhere Else)
Document32 pages
Information Security: Barbarians at The Gateway (And Just About Everywhere Else)
adam ragil
No ratings yet
Cyber Security Curriculum Quantum Learnings 2020
Document2 pages
Cyber Security Curriculum Quantum Learnings 2020
Dhruvee
No ratings yet
Deep Discovery Inspector Datasheet
Document2 pages
Deep Discovery Inspector Datasheet
Humberto Bautista
No ratings yet
Cybersecurity Professional Training
Document2 pages
Cybersecurity Professional Training
KHALID
No ratings yet
Deep Discovery Inspector Datasheet
Document2 pages
Deep Discovery Inspector Datasheet
Humberto Bautista
No ratings yet
Antivirus Software: By: David Holland
Document8 pages
Antivirus Software: By: David Holland
Carlos Quieresa
No ratings yet
DS Retina Scanner Unlimited
Document2 pages
DS Retina Scanner Unlimited
oskar
No ratings yet
Malware Infographics by Slidesgo
Document31 pages
Malware Infographics by Slidesgo
bhasu
No ratings yet
Digital: Cyber Security Training & Program Powered by Ignite Technologies
Document5 pages
Digital: Cyber Security Training & Program Powered by Ignite Technologies
rberrospi
No ratings yet
CISCO Cybersecurity Final Exam Solution by Pari
Document6 pages
CISCO Cybersecurity Final Exam Solution by Pari
bc160200544 Mah Jabeen
No ratings yet
CYSECA - Company Profile 2022 v2
Document25 pages
CYSECA - Company Profile 2022 v2
Cyseca Team
No ratings yet
All in One Ceh PDF
Document157 pages
All in One Ceh PDF
swarterror
No ratings yet
Cyber Security
Document23 pages
Cyber Security
Yzon Fabriag
No ratings yet
Intrusion Detection Systems (Ids) Introduction and Overview: Clément Dupuis, CD Cissp, GCFW, Gcia Ccsa, Ccse, Ace
Document65 pages
Intrusion Detection Systems (Ids) Introduction and Overview: Clément Dupuis, CD Cissp, GCFW, Gcia Ccsa, Ccse, Ace
kavitasingh2
No ratings yet
Kaspersky Security Assessment Services
Document8 pages
Kaspersky Security Assessment Services
meim
No ratings yet
Peiter "Mudge" Zatko: Program Manager, Information Innovation Office
Document10 pages
Peiter "Mudge" Zatko: Program Manager, Information Innovation Office
mangobot
No ratings yet
Cybersecurity Professional Training PDF
Document2 pages
Cybersecurity Professional Training PDF
Tester Mahe
No ratings yet
What Is Internet Security - Web Services - Security Threats - Security Attacks
Document17 pages
What Is Internet Security - Web Services - Security Threats - Security Attacks
Uday Verma
No ratings yet
Managing Cisco Network Security 2E
From Everand
Managing Cisco Network Security 2E
Syngress
No ratings yet
DGS Circular - Digital Signatures
Document2 pages
DGS Circular - Digital Signatures
Cletus Paul
No ratings yet
X8-BT Access Control System User Manual V1.0 - 20161215
Document12 pages
X8-BT Access Control System User Manual V1.0 - 20161215
Mark Ramos
No ratings yet
Harman Doxx + Database Results 2
Document44 pages
Harman Doxx + Database Results 2
bach theone
No ratings yet
Bagus Kevin Raspati Join Ms. Nabella's Class On Edmodo: Subtitle
Document38 pages
Bagus Kevin Raspati Join Ms. Nabella's Class On Edmodo: Subtitle
Yahahah Wahyuu
No ratings yet
Proposed PL Online Pin Code
Document945 pages
Proposed PL Online Pin Code
Vishal Bawane
No ratings yet
Electronic Funds Transfer
Document14 pages
Electronic Funds Transfer
Raj Kumar
No ratings yet
Account Statement From 1 Dec 2018 To 27 Mar 2019: TXN Date Value Date Description Ref No./Cheque No. Debit Credit Balance
Document7 pages
Account Statement From 1 Dec 2018 To 27 Mar 2019: TXN Date Value Date Description Ref No./Cheque No. Debit Credit Balance
Bhaskar Goud
No ratings yet
Premium
Document4 pages
Premium
Luigi Alejandro
No ratings yet
3d Password For More Secure Authentication
Document6 pages
3d Password For More Secure Authentication
Manju Rose Dwarai
No ratings yet
Priya Aadhar
Document1 page
Priya Aadhar
1DS19EE405 GANESH K
No ratings yet
Dated: 1 April 2019 To: Philippine Statistics Authority - Iloilo Subject: Authorization Letter
Document1 page
Dated: 1 April 2019 To: Philippine Statistics Authority - Iloilo Subject: Authorization Letter
Ivy Balandra
0% (1)
Wang2019 PDF
Document35 pages
Wang2019 PDF
Lenin Sleyter Saavedra Jimenez
No ratings yet
Engaging English
Document1 page
Engaging English
Shelley Konar
No ratings yet
Affidavit of Loss: Leslie T. Danga
Document2 pages
Affidavit of Loss: Leslie T. Danga
Charisma Bernabe
No ratings yet
HVLTL T510 Jqchiwe
Document5 pages
HVLTL T510 Jqchiwe
ma.shehlaint
No ratings yet
Complaint View
Document2 pages
Complaint View
Rahul Dhamaniya
No ratings yet
ApplicationForm, Self Declarationand Pre Verification Report Format
Document4 pages
ApplicationForm, Self Declarationand Pre Verification Report Format
Anuj Goel
No ratings yet
EN R502 Dual Interface DATASHEET
Document1 page
EN R502 Dual Interface DATASHEET
qaz qazy
No ratings yet
Genesis Mining Bitcoin 101
Document19 pages
Genesis Mining Bitcoin 101
cjtrybiec
No ratings yet
Bitcoin For Beginners
Document10 pages
Bitcoin For Beginners
michellouise17
No ratings yet
Account Statement From 7 Jun 2022 To 7 Dec 2022: TXN Date Value Date Description Ref No./Cheque No. Debit Credit Balance
Document3 pages
Account Statement From 7 Jun 2022 To 7 Dec 2022: TXN Date Value Date Description Ref No./Cheque No. Debit Credit Balance
Rdb Talk
No ratings yet
Cybersecurity Professional Training PDF
Document2 pages
Cybersecurity Professional Training PDF
Tester Mahe
No ratings yet
Step-1:: Login Page Customer Can Sign Up and Login Using Mobile Number & Password
Document6 pages
Step-1:: Login Page Customer Can Sign Up and Login Using Mobile Number & Password
Satya Rani Lakkoju
No ratings yet
Introduction To Cryptography Basic Principles
Document3 pages
Introduction To Cryptography Basic Principles
Reddy Sumanth
No ratings yet
ackReceiptCR - GSTNN - 033789701103185
Document1 page
ackReceiptCR - GSTNN - 033789701103185
Mahesh Margam
No ratings yet
Fog Computing
Document11 pages
Fog Computing
abid6364
No ratings yet
Question Bank CAT-II
Document1 page
Question Bank CAT-II
CodeYt With
No ratings yet
White Box
Document2 pages
White Box
louiechinito12
No ratings yet