I have a slide I used to use in my stump pitch that detailed the use of the Haephrati Trojan. My theme was that your existing anti-malware products were completely unable to defend against the simplest custom Trojan. As I have written before, custom Trojans are like the automatic lockpick of the cyber world. Every crook knows how to use them. Lock pick nothing. They are like bump keys, a technique for modifyinng any key to break in to any lock. In the two hundred or so times I presented that pitch not a single person asked how my employer's product, that was pure signature based, could defend against custom Trojans.
Even though the Israeli trojan fiasco is quickly sinking into the murky distance of ancient history the threat is still prevelant. Come hear my new pitch on custom Trojans and other un-talked about threats today at 2 PM Eastern, 11:00 AM Pacific. Register for free at Sana Security's site.