Blended threat

Complex malware attack using exploits, trojans, worms etc.

A blended threat is a sophisticated attack using multiple malware types and vectors to carry out penetration and control of a system.

An example would be a spammed email containing a link to a legitimate website that has been hijacked via a vulnerability in the web server software, which carries hidden iframes running malicious javascript. The malicious javascript exploits further vulnerabilities in the browser, enabling code to be executed on the target host, disabling security software and downloading further trojans and worms. These include backdoors which can be used to control the now hijacked machine, making it send out spam and host web pages serving more trojans and worms.

Related news articles

Microsoft increases pressure on Apple to fix Safari blended threat

'Carpet bombing' vulnerability more serious than Apple claims, MS warns.

03 June 2008

  see all related news stories

Poll

Do you use the same password(s) across multiple websites?
I use the same password for all sites
I have a number of passwords but use the same for some sites
I use a different password for each site
I don't sign up to any sites that require a password

Leave a comment
View 4 comments
Jobs Career Sidebar

Jobs

In Virus Bulletin's jobs pages among others:
Virus Bulletin currently has 190,375 registered users.