After the first encounter with VPNFilter, it appeared that the malware has been entirely neutralized since it was rapidly countered earlier this year. But this is not the case anymore.
VPNFilter malware is now having new capabilities that are transforming it into a more potent tool for hackers.
Many hackers are now finding greater tools by reusing older code families. VPNFilter — the attack that caused the FBI to recommend that everyone in the US reset their cable modem — is no stranger from this kind of techniques, now the famous malware has been enhanced new capabilities and payloads.
Remember everything is hackable. In order to stay away from any threats related to the cyber world, we recommend the install of antivirus for Windows or antivirus for Mac on every device that you own, depending on which OS your device is running. If you are a company, it is also recommended to hire every year a specialized cybersecurity company that will run annual tests on your company’s network. These tests include penetration testing and ethical hacking tests;
Recently researchers have found seven new third-stage VPNFilter modules that have implemented the significant new functionality. The new capabilities include an expanded ability to move laterally between endpoints on a network, data filtering, and multiply encrypted tunnels to mask command-and-control and data exfiltration traffic.
In conclusion, security professionals say that this is both worrying and terrifying at the same time. Researchers also, point out that the new capabilities are accompanied by new obfuscation routines which are making VPNFilter more difficult to find by cybersecurity solutions and more dangerous.
The hackers of VPNFilter are extremely capable and driven by their mission priorities, this makes them continually reinvent and reuse the code in order to achieve their goals. The sophisticated nature of this new variant illustrates the advanced capabilities of the threat creators, as well as the need for companies and individual people to implement and use a robust cyber defense solution which can be used to neutralized threats like VPNFilter.
We would continue to monitor this cybersecurity problem. Meanwhile, users should keep a keen eye out for any cyber attacks. Remember to use an antivirus for Windows or antivirus for Mac in every device that you own, depending on which OS your machine is running, If you are a company we recommend to hire every year a specialized cybersecurity company that will run annual tests on your company’s network, tests like this include: penetration testing and ethical hacking.