The value of understanding Gauss' payload is in learning the components targeted after the malware plants itself in a system. "Until we can decrypt or observe that payload in execution, we really don't know what happens after the initial stage of infection," said Brent Huston, chief executive of MicroSolved, a provider of security assessments and penetration testing.
Once that information is made available to chief security officers, they can determine whether their company is a potential target, Huston said. "It keeps you from spending a bunch of resources, if you don't have to."
Sign up for CIO Asia eNewsletters.