Cisco researchers have discovered that the malware named Rombertik, when detected by anti malware systems, attempts to destroy the Master Boot Record (MBR) of the computer it is on. This malware is introduced into systems by phishing emails, where links in the email are clicked on and the malware is downloaded in the background. SC Magazine reported this on May 5, 2015, stating that Rombertik goes to extreme measures to avoid detection and causes harm to infected systems.
“This is the perfect example where layered defense makes a lot of sense,” said Craig Williams, technical leader, Cisco Talos, in an interview with SCMagazine.com.
Layered systems combined with end user awareness is the only defense here. End users are always the targets, and need the highest level of awareness to avoid infection.