Blended threat

Complex malware attack using exploits, trojans, worms etc.

A blended threat is a sophisticated attack using multiple malware types and vectors to carry out penetration and control of a system.

An example would be a spammed email containing a link to a legitimate website that has been hijacked via a vulnerability in the web server software, which carries hidden iframes running malicious javascript. The malicious javascript exploits further vulnerabilities in the browser, enabling code to be executed on the target host, disabling security software and downloading further trojans and worms. These include backdoors which can be used to control the now hijacked machine, making it send out spam and host web pages serving more trojans and worms.

Glossary


	Similar entries Adware Appender Backdoor Boot sector virus Bot Botnet Cavity filler Chain letter Clicker Companion virus Data diddler DDoS Dialler Dictionary attack Directory harvesting DoS Downloader Drive-by download Exploit File infector virus Fork bomb Hoax Intended virus Joke Keylogger Logic bomb Macro virus Malware Mass-mailer Metamorphic virus Mid-infector Misinfection Multipartite virus Password stealer Pharming Polymorphic virus Prepender Ransomware Rootkit Smurf attack Spyware Trojan Virus Wabbit Worm Zip bomb Zombie See also Glossary Resources

Quick Links

Poll

The Japanese government is reported to have commissioned a 'defensive virus'. Is 'defensive' malware ever a good idea?
Leave a comment
View 11 comments

VB100 certification


	This month's VB100 test saw some major changes and a radical overhaul of the VB100 test methodology - for the first time allowing products to use their 'cloud' look-up systems. John Hawes has all the details. See full results.

Virus Bulletin currently has 224,239 registered users.

Fighting malware and spam

Blended threat

See also