Hackers create 'disposable codes'

Researchers and security companies are struggling with the emergence of a new user attack tactic that can easily pass through their surveillance eyes.

Accordingly, hackers will kidnap a website and insert malicious code. If a user accidentally accesses this website, their PC will be infected with malicious code if it has not been fully installed. The main task of malicious code is to kidnap the system for other purposes of hackers or steal confidential personal information of users.

Security firm Finjan said the special feature of this attack method is that hackers use JavaScript to ensure that every user accessing that website is infected only once.

" This method of attack is the clearest proof of a leap in the complexity of attacks. The new method has limited the maximum exposure of malicious code to security studies or feces. Each member can only see malicious code once . "

When users access the hackers' website, they will record their IP address into the database. If users re-access the website again, the programming code will confirm the IP and no longer infect their PC. In addition, hackers can block malicious code from infecting a user's PC in a certain country.

This method has helped hackers hide their malicious code in the eyes of security researchers. Now they may want their malicious code to exist as long as they want. But security firms have been able to detect the threat from this attack.

There are still no statistics on how many websites use this kind of attack. However, Finjan warned that this method is very popular among hackers.

Hoang Dung