Not sure I understand this. Could be either way. More experts likely to know advanced methods and patterns and thus more insight in finding malware? Or is better to have a larger number of trainees doing the work, likely to find subtle security flaws.
Malware Developers Turn to 'Exotic' Programming Languages to Thwart Researchers
ZDNet, Charlie Osborne, July 27, 2021
Cybersecurity service provider BlackBerry's Research & Intelligence team has found that malware developers are increasingly employing "exotic" coding languages to foil analysis. A report published by the team cited an "escalation" in the use of Go (Golang), D (DLang), Nim, and Rust to "try to evade detection by the security community, or address specific pain-points in their development process." Malware authors are experimenting with first-stage droppers and loaders written in these languages to evade detection on a target endpoint; once the malware has bypassed existing security controls that can identify more typical forms of malicious code, they are used for decoding, loading, and deploying malware. The researchers said cybercriminals’ use of exotic programming languages could impede reverse engineering, circumvent signature-based detection tools, and enhance cross-compatibility over target systems..... '
No comments:
Post a Comment