Kaspersky has a detailed blog post about a new piece of sophisticated malware that it's calling Reductor. The malware is able to compromise TLS traffic by infecting the computer with hacked TLS engine substituted on the fly, "marking" infected TLS handshakes by compromising the underlining random-number generator, and adding new digital certificates. The result is that the attacker can identify,...
The post New Reductor Nation-State Malware Compromises TLS appeared first on Security Boulevard.
Article Link: https://securityboulevard.com/2019/10/new-reductor-nation-state-malware-compromises-tls/