While researching the Symantec code theft incident, I came across a very interesting, albeit technical article, on the latest technology malware makers are using to infect your computer.

Every day we are asked at least once how it was possible for attackers to infect the client’s computer.  The gist of it is as follows:

A group of Russian hackers develop a kit whose single purpose is to quickly inspect your computer and figure out the best way to attack it. The Black Hole Exploit kit uses very current flaws in Java and Adobe Reader to attack your computer and infect it.  While there are several ways to use it, such as planting it on hacked websites, it’s most common delivery is in email links.

According to the Hacker News, the kit is sold for $1500 for an annual license, $1000 for a semi-annual license and $700 for a quarterly license.  Users can even rent the kit (!) for $50 for 24 hours.  Numerous other options exist, such as renting by the week or even downloading it for free (crooks have no shame!).

The infections are encrypted, which renders the standard antivirus software (like Norton, Mcafee, AVG, etc) useless because they work on signatures.  They can’t detect the signature if the software is encrypted.  The encryption signature itself is new, meaning the crooks are consistently developing new code to get around the typical security software.  Barely 30% of security software detects the virus.  We’re pleased to say that Kaspersky, our long time top pick, Microsoft and Avast all find and identify the exploit.

The crooks host the software on numerous servers.  If one gets taken down it gets served up from the others, demonstrating a disturbing trend in resiliency.  Increasingly we’re finding that the software is signed with stolen SSL certificates so that it sneaks right by software protections, such as those built into Windows.

With technology like this freely available, it’s no small wonder how so many computers get infected every day and how important it is to have a good computer repair company stay on top of the latest trends and technologies to help keep you, your information and your identity safe.

If you get infected and need computer repair in Barrie, give us a call at 705.739.2FIX.  We’ll clean the computer for you and help protect you.