Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×

+ - New Attack Binds Malware in Parallel to Software Downloads->

Submitted by msm1267
msm1267 (2804139) writes "Researchers from Ruhr University in Bochum, Germany, have developed a proof-of-concept attack in which they are able to inject malicious code into a download that runs in parallel to the original application, without modifying the code.

The attack targets free and open source software, in particular those where code signing verification and other integrity checks are lacking in the download process.

Rather than spike the original application with malware, the researchers use a binder that links the binder application, malware and original download."

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

New Attack Binds Malware in Parallel to Software Downloads

Comments Filter:

All the evidence concerning the universe has not yet been collected, so there's still hope.

Working...