• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Never-before-seen "binary file posing as text file" malware

I

igor_kavinski

Lifer
www.techspot.com

Hackers used Ars Technica and Vimeo to deliver malware using obfuscated binary instructions in a URL

Security analytics firm Mandiant recently uncovered a "never-before-seen" attack chain that used Base 64 encoding on at least two different websites to deliver the second-stage payload of...
www.techspot.com www.techspot.com

The second stage, dubbed "Emptyspace," is a text file that appears blank to browsers and text editors. However, opening it with a hex editor reveals a binary file that uses a clever encoding scheme of spaces, tabs, and new lines to create executable binary code. Mandiant admits it has never seen this technique used before.
Click to expand...

So look out for empty looking text files!
 
Seems easily avoidable by not doing what you're not supposed to be doing anyway - don't launch questionable files from a questionable flash drive, then you never get the needed stage 1 malware to begin with.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top