Friendship and an immortal virus
Yes, an immortal virus seems to exist ... at least in comparison to the usual life cycle of malware. While there are lots of malware families with very short half-life, there are only few with a long life. Parite (aka Pinfi) - a real long-playing evergreen - is one of them. Parite will reach the 10-year milestone this October. Gosh! Ten years! Can you remember what your computer looked like ten years ago? Ten years is an eternity in the world of IT. Just try to list what has changed and evolved during this period. There’s the obvious evolution of Windows and antivirus software for starters. But, despite all these changes, Parite is still with us.
This is surprising. Here are five reasons why Parite should have vanished:
But, there are still tens of Parite submissions in our reporting system every day - and they are definitely not false positives. I believe that Parite is spread only by file exchanges between friends (if we don't count spreading through net-shares in local networks). And this is where the individual user must make his or her decision: “Should I trust my friend that the file is clean (and subsequently report it as a false positive) or should I trust my antivirus app?". Parite will be immortal as long as the first group of users do not change their minds. And I'll have to tell Parite a “happy birthday” instead of “R.I.P” in October.
Avast Threat Intelligence has identified a new advanced persistent threats (APT) campaign targeting government agencies and a government data center in Mongolia.
Our Aposemat Team has been testing the capabilities of IPv6 and how malware could take advantage of it. One of the topics explored was exfiltration of data via the IPv6 protocol, which we discuss in this post.
Popular banking services, including PayPal, Revolut and Venmo, allow users to request money from others with a few easy steps. Although simple, this functionality could increase the likelihood of related spearphishing attacks.