The biannual Security Labs Report details the emergence of combined attacks using Adobe's ActionScript and JavaScript languages to thwart most of the new, proactive detection mechanisms.
According to M86, this threat trend is the latest to emerge as cybercriminals seek new ways to limit the effectiveness of proactive security controls. As existing techniques for "covering their tracks" become less effective, cybercriminals have begun using combined attacks, which are more complex and difficult to detect.
By splitting the malicious code between Adobe ActionScript language – built into Adobe flash – and JavaScript components on the web page, they limit the effectiveness of many of the proactive security detection mechanisms.
This story was first published by Computer Weekly