Hackers are developing new software that will help hide browser attack code from some types of security software.The software, called eVade o\u2019 Matic Module (VoMM), uses a variety of techniques to mix up known exploit code to make it unrecognizable to some types of antivirus software.Using these techniques, VoMM "can create an endless number of variants of an exploit," said Aviv Raff, one of the developers behind the project."It aims to provide several techniques out of the box to make browser exploits (mostly) undetectable," according to a blog posting by one of the project\u2019s founders, a hacker going by the name of "LMH." That posting can be found here.The software uses server-side scripting technology to create new versions of the exploit code, which then get delivered to browser users when they visit the attacker\u2019s website. By making a number of cosmetic changes to the code that do not affect its functionality, VoMM creates a new version of the malicious software that cannot be detected by "signature-based" techniques.Signature-based antivirus products analyze known malware and then create a digital fingerprint that allows the antivirus software to identify malicious code. By adding extra components\u2014tabs and spaces, and random comments and variable names\u2014that are not included in known signatures, VoMM creates software that can evade detection.The VoMM code is expected to be included in a new module for the upcoming 3.0 version of the widely used Metasploit hacking toolkit, Raff said. Metasploit developer HD Moore is also developing the VoMM software. Raff\u2019s blog posting on the project can be found here.\u00a0 -Robert McMillan, IDG News Service (San Francisco Bureau)Related Links:\n\nMozilla Duped by Hackers\u2019 \u2018Humorous\u2019 Demo\n\nSome Apple iPods Infected With Windows Virus\n\nWorm Burrows into McDonald\u2019s MP3 Player PromotionCheck out our CIO News Alerts and Tech Informer pages for more updated news coverage.