Virtual machines being used to obfuscate malware

by Phil Muncaster

16 Mar 2010

Security experts at the e-Crime Congress event in London this week warned of an increase in incidents of criminals using virtual technology to obfuscate malicious code, thereby making it harder to unravel.

Rik Howard, director of intelligence at iDefense, the managed security arm of VeriSign, argued that virtual machine obfuscation software is beginning to appear on the radar of researchers.

He explained that the tool is being employed by cyber criminals to create a different bytecode every time a binary is run through it, making it harder to crack.

"This makes it very difficult for our guys to pull it apart," he added. "It's a much slower process than standard reverse engineering. We expect to see it more and more in the next year or two."

Howard highlighted the worrying appearance of VM obfuscation tools readily available on the market, such as VM Protect, which is being marketed legitimately as IP protection software.

"This helps the criminals - they don't even need to build an obfuscation system," he argued.

Topics:
Security
Security Watch

Do you agree?

Add your comment

Your name:
Your email address:	We won't publish your address
Your comment title:
Your comment:	By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.

Submit your comment

IT priorities for 2012

What is the most important IT priority for your company this year?

Reduce costs and do more with less

97%

Take advantage of the latest technologies like social media and cloud

Improve security

Consolidate applications or systems

Gain a competitive advantage through funding new IT projects

Features

World indulges in a Facebook facts fest as firm prepares to float

Top five most interesting figures from Facebook’s IPO

Intel will prove Steve Jobs wrong in the mobile market

RIM needs to decide where its market lies

More features

ICO adds caution to EU data protection proposals - video

EU data protection overhaul contains "bureaucratic tick box-proposals", says information commissioner Christopher Graham in exclusive interview with V3

Sign up to our daily or weekly newsletters

Follow @V3_co_uk

Case studies and reports

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

Network Engineer - Wireless - Manchster - CCNP - Contract

VPN - WAN - LAN - ASA - FSWM - Cisco - Routers - Swicthes...

Test Manager

Test Manager – Various Locations – Full Project Lifecycle...

Front Office Counterparty Risk Support Analyst

Front Office Counterparty Risk Support Analyst A top...

IT Support Engineer – Servers & Networking - Up to £26,000

IT Support Engineer – Servers and Networking Borehamwood...

White paper library
Latest white papers

Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.

More white papers

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

About us:

Business & technology web sites:

Blogs & community:

Reviews:

Software downloads:

Tools & resources:

Accreditation:

Digital Publisher of the Year 2010

Friend's email address	To send to more than one email address, simply separate each address with a comma.
Your email address
Message

Virtual machines being used to obfuscate malware

Get the latest security headlines direct to your inbox

Sign up to our daily or weekly newsletters