VPNFilter’s Arsenal Expands With Newly Discovered Modules


Seven new modules discovered in VPNFilter further fill in the blanks about how the malware operates and reveals a wider breath of capabilities.

Researchers have discovered new modules in VPNFilter – the malware behind the widespread campaign in May that infected 75 router brands – revealing that its capabilities are much more widespread and sophisticated than previously thought.

After reverse-engineering seven additional third-stage modules, Cisco Talos researchers said that it has discovered that the malware packs additional capabilities – including network-mapping functions, a denial-of-service utility and traffic obfuscation techniques. That also includes a method of scoping out and exploiting additional victims accessible on the local network from already-infected devices.

Read more…
Source: ThreatPost