Shakespearean Malware Returns

Share it on Twitter  
Share it on Facebook  
Share it on Linked in  

Trusteer researchers are warning of a recent surge in infections from the Shylock malware, which contains random quotes from Shakespeare's "The Merchant of Venice."

"According to experts, Shylock, known for the fact that it targets financial information on the victims' computers, uses a three step technique to ensure that it can almost completely avoid detection," writes Softpedia's Eduard Kovacs. "First of all, it injects itself into all the processes that run in the memory. Each time a new application is executed, the malware makes its way into the process before the program actually starts. "

"Another clever way of hiding from security applications is by permanently monitoring the directory browsing and the enumeration of registry keys," Kovacs writes. "Since these two factors can indicate an antivirus scan that’s in progress, each time these operations are detected, Shylock removes itself from the registries."

Go to "Shakespearian Malware Avoids Antivirus Detection" to read the details.

For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.