Tuesday, February 2, 2016

Symantec AWOL Again

Another day, another threat missed by the "Premium" AV/Security companies.  Case in point:

- As of 7amCST a Microsoft Word Document w/Malicious Macro began propagating across the internet.  Are we sure it's malicious?  Yeah... pretty sure:

Forcepoint File Sandbox Report

- As seen above, the malware affects 2 Processes, 24 Files and 418 Registry Entries.  If that isn't enough to convince you of it's malicious nature, how about the fact that it also phones home to a known Botnet, and, pulls down an additional executable via HTTP:


- Lastly, if you are hoping your Symantec Security Solution is going to protect you against this Dridex Attack (which is gunning for the login credentials to your bank)... your hope is misplaced as only 4 of 53 AV Companies are currently detecting this threat:


In summary, it's time to reduce your security spend on legacy security solutions (AV) and adopt Next Generation Solutions.  Request a free ESPO Systems Consultation here.

No comments:

Post a Comment