Dangerous Malware Targets Vaccine Manufacturers

There are many illnesses in the world, several of which have not yet been eradicated. We think that in the future, we’ll undoubtedly discover more. This is why vaccines are being developed with the goal of preventing people from getting particular diseases or at least minimizing their symptoms considerably.

However, certain individuals appear to be attempting to disrupt this research process by releasing malware aimed at these vaccine research facilities and manufacturers. What’s unusual is that researchers from the BIO-ISAC have discovered a new strain of Windows malware called Tardigrade that can adaptively change its behavior to avoid being detected.

It’s a strange parallel, since vaccines are developed to target viruses. By stopping a virus before it has the opportunity to mutate and become more resistant to vaccines in the future, vaccination prevents it from jumping to another host where it may develop further. This is similar to what Tardigrade malware does.

Trilab is a family of ransomware that uses a variant of the Hidden Service protocol to obscure its digital footprint. This malware has been known to modify one letter at a time in order to avoid detection. It can even recompile its code every time the host computer connects to the internet, making it more difficult for malware scanners to detect.

The researchers recommended potentially targeted businesses use “antivirus with behavioral analysis capabilities” and to be on the lookout for phishing emails that may be used to deliver malware after their findings were published.