sb-nz logo
Story image

Major spike in Malware encryption, Blue Coat finds

Web security specialists Blue Coat is warning enterprises and governments against a ‘significant’ spike in malware hidden in SSL traffic.

According to the company, the rapid adoption of cloud and mobile apps and services is driving an increase in SSL/TLS encrypted traffic as concerns around personal privacy grow.

It says the growing use of encryption is creating perfect conditions for cyber criminals to hide malware inside encrypted transactions.

The advanced threats employ hidden command and control (C&C) channels to execute malicious programmes and exfiltrate proprietary data.

Blue Coat Researchers found a 58 times increase in SSL-cloaked traffic in C&C and a 200 times increase in C&C servers using SSL in 2015, indicating that SSL/TLS will be increasingly used in the future to hide attacks.

As attacks increase exponentially, much of enterprise security infrastructure remains blind to encrypted traffic, Blue Coat says.

“Our researchers’ findings reveal what many have long suspected – that SSL traffic as a primary channel for malware and exfiltration is dramatically increasing,” comments Michael Fey, president and COO, Blue Coat Systems.

“In light of these growing threats, many organisations have realised that the balance between network performance and proper SSL inspection is not as simple as they had been led to believe by many of their network security providers,” he explains.

“By providing dedicated SSL visibility, Blue Coat is helping customers combat security threats hidden in encrypted traffic while preserving the enterprise customers’ priorities like network performance, user privacy and regulatory compliance that organisations today require,” Fey adds.

Story image
M.Tech to distribute Securonix SIEM in A/NZ
The partnership adds to Securonix’s investments in infrastructure and personnel in Asia-Pacific following 100% year over year revenue growth in the region.More
Story image
Network visibility is the crux of security in 2020
Resilience sits at the heart of security, and there is a need for organisations’ architecture, processes and strategies to be more impervious in order to continue to ensure protection, writes Gigamon A/NZ manager George Tsoukas.More
Story image
Gartner reveals the top strategic tech trends for 2021
“CIOs are striving to adapt to changing conditions to compose the future business - this requires the organisational plasticity to form and reform dynamically. Gartner’s top strategic technology trends for 2021 enable that plasticity.”More
Story image
Five Eyes nations want legal access to backdoors to fight 'illegal content'
The nations argue that encryption can make the enforcement of public safety difficult, particularly when it comes to serious problems like child exploitation. More
Story image
How cyber-attackers use Microsoft 365 tools to steal data
Vectra security research has recently identified how cyber-attackers use Microsoft Office 365 tools against organisations to steal data and take over accounts.More
Story image
BlueVoyant acquires Managed Sentinel, builds out Microsoft MSS offerings
“Combining Managed Sentinel’s Azure Sentinel deployment expertise with BlueVoyant’s MDR capabilities will help customers operationalise and maximise Microsoft security technologies."More