Threat Spotlight: Rombertik – Gazing Past the Smoke, Mirrors, and Trapdoors

Rombertik is a complex piece of malware with several layers of obfuscation and anti-analysis functionality that is ultimately designed to steal user data.  Good security practices, such as making sure anti-virus software is installed and kept up-to-date, not clicking on attachments from unknown senders, and ensuring robust security policies are in place for email (such as blocking certain attachment types) can go a long way when it comes to protecting users.  However, a defense in depth approach that covers the entire attack continuum can help identify malware and assist in remediation in the event that an attacker finds a way to evade detection initially.

via Threat Spotlight: Rombertik – Gazing Past the Smoke, Mirrors, and Trapdoors.

via Threat Spotlight: Rombertik – Gazing Past the Smoke, Mirrors, and Trapdoors.

Advertisements