Mevade malware starting to make the rounds
Posted by: Timothy Weaver on 10/28/2013 03:57 PM
[
Comments
]
Infosec researchers say that there is a new strain of malware making the rounds in the US, Canada, the UK and India.
The lead security researcher at IT security firm Websense, Jason Hill, says "The malware associated with this particular campaign has been linked to a large spike in TOR traffic indicating that the nefarious parties behind this attack are taking steps in order to secure the anonymity of their command and control (C2) infrastructure as well as themselves."
"In addition," Hill added, "the malware also uses a reverse proxy and communicates over SSL which requires the right technology with the ability to decrypt such encrypted traffic in order to inspect and detect a compromise."
Websense has put together a blog post, complete with maps and charts, documenting the threat in greater depth here.
The lead security researcher at IT security firm Websense, Jason Hill, says "The malware associated with this particular campaign has been linked to a large spike in TOR traffic indicating that the nefarious parties behind this attack are taking steps in order to secure the anonymity of their command and control (C2) infrastructure as well as themselves."
"In addition," Hill added, "the malware also uses a reverse proxy and communicates over SSL which requires the right technology with the ability to decrypt such encrypted traffic in order to inspect and detect a compromise."
Websense has put together a blog post, complete with maps and charts, documenting the threat in greater depth here.
Comments
