Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 internet speed test! ×

Submission + - New Attack Binds Malware in Parallel to Software Downloads (threatpost.com)

msm1267 writes: Researchers from Ruhr University in Bochum, Germany, have developed a proof-of-concept attack in which they are able to inject malicious code into a download that runs in parallel to the original application, without modifying the code.

The attack targets free and open source software, in particular those where code signing verification and other integrity checks are lacking in the download process.

Rather than spike the original application with malware, the researchers use a binder that links the binder application, malware and original download.

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

New Attack Binds Malware in Parallel to Software Downloads

Comments Filter:

My idea of roughing it turning the air conditioner too low.

Working...