Kirill Kruglov, senior researcher and developer at Kaspersky Lab, said that the world of commercial malware is not standing still and attackers are starting to provide their malware with infrastructure, step-by-step instructions and the ability to contact technical support. socialbites.ca.
“The authors or owners of the infrastructure sell it for very little money, give instructions, provide technical support, if something does not work, they help install it,” Kruglov said.
According to him, technical support helps ensure the functioning of the entire infrastructure. If some IP addresses are included in the block list, their IP addresses are changed. Services called obfuscation services are used to ensure that malware is not detected in the first stage.
“They scramble all the malware code, so it’s not that easy to detect. Its essence is old, but this shell it is wrapped in is new. And if it suddenly turns out that such bundled malware has been detected, the customer has the right to contact technical support and they will do it again and check if everything works as it should,” Kruglov explained.
The developer believes that nowadays there is no need for some novice hacktivists or start-up groups to “reinvent the wheel from scratch”. They can go out and acquire all the infrastructure that can be used for attack, sometimes for very little money.
Read more about how large companies are hacked, why three training classes are enough for hacking, and what a malware designer is. report Kruglova “socialbites.ca”.
Previously expert named The price of stolen data from well-known companies on the black market.