Blended threat

Complex malware attack using exploits, trojans, worms etc.

A blended threat is a sophisticated attack using multiple malware types and vectors to carry out penetration and control of a system.

An example would be a spammed email containing a link to a legitimate website that has been hijacked via a vulnerability in the web server software, which carries hidden iframes running malicious javascript. The malicious javascript exploits further vulnerabilities in the browser, enabling code to be executed on the target host, disabling security software and downloading further trojans and worms. These include backdoors which can be used to control the now hijacked machine, making it send out spam and host web pages serving more trojans and worms.

Quick Links

Poll
The Japanese government is reported to have commissioned a 'defensive virus'. Is 'defensive' malware ever a good idea?
Yes
No
I don't know
Leave a comment
View 11 comments

99 Subscription Promo

VB100 certification
VB100 This month's VB100 test saw some major changes and a radical overhaul of the VB100 test methodology - for the first time allowing products to use their 'cloud' look-up systems. John Hawes has all the details.
See full results.

Virus Bulletin currently has 224,239 registered users.