More evidence you need a defence-in-depth approach to malware today
Governments and criminal organisations are writing malware which is used "sensibly" and thus signature-based antivirus (even supplemented with cloud "knowledge" is being bypassed. Behaviour is the key but the world is becoming more mobile and thus our assets are rarely on our network.
Which is annoying and hard to defend against.
Also I'm becoming unsure if detective controls are sufficient for this type of problem. A network appliance monitoring callbacks will only detect callbacks which pass though it.
To defend against this type of threat, you have to design your entire network to be more resilient against the threat. Is now the time for BYOD to hit the endpoint and we harden the heck out of virtual desktops and applications?
On the bright side, I have lots of work and few budgetary issues as I know my C-level management are now very concerned about IT security and what it means for us as a threat.
So have a smiley, people, in a strange way....!