QuickHeal technologies has identified a new form of malware that can breach sandbox protection layer of computers. The malware sample – APT-QH-4AG15 has multiple anti-sandbox tricks that can breach highly protected networks. This can affect many small, medium and large size companies.
Sanjay Katkar, CTO of QuickHeal revealed the news to the media. Malware is a computer virus that can be in form of code, scripts, active content and software. The malicious program can be either hostile or intrusive. The sandbox protection layer in computer is supposedly good enough to fight against malware.
Sandbox based appliances are designed with a mechanism to protect computer and network’s security. The new samples identified by QuickHeal can breach traditional antivirus and firewall solutions. The traditional security software can protect zero-day attacks but, the software failed to protect when tried breaching the security with this sample of malware. The malware is capable of breaching highly protected network.
Sanjay Katkar said, “Companies need to implement multi-layer safeguard protection to protect their networks. FireEye believes that current antivirus software and endpoint protections cannot fight against such malware attacks. But, the malware is designed to pass EPS.” Sandbox systems like FireEye or FortiSandbox are considering all possible test-cases of malware.