![]() ![]() Our industry – leading Global Security Intelligence is one reason why we can deliver this superior vendor can match the quality and breadth of our security intelligence, enabling us to protect businesses from an ever-widening range of threats. This adaptive security approach protects businesses against the most sophisticated threats, targeted attacks, new malware – including ransomware and crimeware – and of course APTs.īy correlating events from multiple layers – including network, endpoints and the global threat landscape – the Kaspersky Anti Targeted Attack Platform delivers near real-time detection of complex threats, as well as generating critical forensic data to empower the investigation process. Monitoring network traffic, combined with object sandboxing and endpoint behavior analysis, delivers detailed insights into precisely what’s happening right across a business’s IT infrastructure. The Kaspersky Anti Targeted Attack Platform is part of an adaptive, integrated approach to enterprise security. Aditya-L1 begins 1.The Solution: Kaspersky Anti Targeted Attack.Aditya L1 Launch Live Updates: ISRO all set for Sun mission with Aditya launch today.Also Read: Microsoft has warned about an Android malware that can empty your mobile balance. Moreover, Kaspersky added that initially, Qihoo’s report hinted that the buyer probably received a “backdoored motherboard after placing an order at a second-hand reseller.” However, Kaspersky wasn’t able to confirm the information. The antivirus company has also mentioned that the Chinese antivirus vendor Qihoo 360 also uncovered an early variant of CosmicStrand back in 2017 that affected an Asus B85M motherboard. Again, another sample was found connecting to a different hacker-controlled server in 2020. According to Kaspersky’s research, one sample of the malware was first spotted to be communicating with a hacker-controlled for the first time in December 2016. However, CosmicStrand has managed to hide for several years. ![]() If so, it would follow that the attackers had prior access to the victim’s computer to extract, modify and overwrite the motherboard’s firmware.” How CosmicStrand has been hiding for so long As per the report, CosmicStrand is not the first UEFI-based malware as the antivirus industry has uncovered many other strains over the years. The company explains, “Looking at the various firmware images we were able to obtain, we assess that the modifications may have been performed with an automated patcher. Eventually, the malware makes the machine retrieve a nasty component from a hacker-controlled server and installs the same inside the Windows OS. CosmicStrand is capable of executing “malicious processes” starting from when the PC boots up as it infects the motherboard's UEFI. Intel introduced these chipsets in 2013, however, now they are discontinued. How CosmicStrand is affecting Asus and Gigabyte motherboards As per Kaspersky’s research, CosmicStrand malware was discovered on firmware images for older Asus and Gigabyte motherboards that used the H81 chipset. Moreover, the company also claimed that all the victims are likely to be private individuals as they were using Kaspersky’s free antivirus software. The report suggests that Kaspersky not only discovered the malware but also stated that CosmicStrand was being circulated on Windows machines in countries like - China, Vietnam, Iran and Russia. The vulnerability is caused by insufficient boundary checks of. Antivirus company Kaspersky has recently discovered a “malware strain” that can “survive OS reinstalls” and has been “infiltrating older motherboards from Asus and Gigabyte.” According to a report by PCMag, the malware named CosmicStrand is designed to target the UEFI (Unified Extensible Firmware Interface) of these motherboards which allows it to survive on a Windows system even after the storage drive has been removed. There exists a heap-based buffer overflow vulnerability in the Kaspersky Antivirus Library. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |