Tuesday, June 7, 2011

Amazon's Cloud used to spread malware

A researcher at Kaspersky Lab has discovered the presence of a tool hosted on servers in the Amazon Cloud to deliver a malware that steal banking information from infected users. Cloud public infrastructure and power they offer at a lower cost (a few cents to 2.5 per hour) are more often pointed to by observers of security.

Between demonstrations of cracking passwords (using algorithms such "brute force" hosted by Amazon Web Services and EC2) and mid-April attacks that have knelt the Sony Playstation Network (attack launched from servers Amazon EC2 cloud "Elastic Compute Cloud"), we must recognize that the fears are justified specialists.

Researchers at Kaspersky Lab have discovered a new use cybercriminal Amazon Cloud infrastructure. This time, the Amazon WAS servers are used to disseminate massive malware. This proves indeed quite sophisticated as it contains a rootkit capable of blocking off a number of famous antivirus (including AVG, Avira, Avast and ESET).

The malware attacks mainly to steal login information for Windows Live and 9 Brazilian online banking services. According to Dmitry Bestuzhev, the expert Kaspersky Lab led to this discovery, we must expect that the public cloud services is becoming more frequently used to support all kinds of attacks.

He invited the hosts Cloud to "monitor" the activities of more servers and train security teams specialized in the fight against the exploitation of these clouds for cybercrime.

No comments:

Post a Comment