Hackers Use Virtual Machine Detection To Foil Researchers


Hackers are adding virtual machine detection to their worms and Trojans to stymie analysis by antivirus labs, a security research said Sunday.

The tactic is designed to thwart researchers who use virtualization software, notably that made by VMware, to quickly and safely test the impact of malicious code. Researchers will often run malware in a virtual machine to protect the system's actual operating system from infection; virtualization software also lets analysts test malware against multiple operating systems on a single computer. Hackers Use Virtual Machine Detection To Foil Researchers - News by InformationWeek

Linked by shanmuga Monday, 20th November 2006 11:49PM