Search
Search titles only
By:
Search titles only
By:
Log in
Register
Search
Search titles only
By:
Search titles only
By:
Menu
Install the app
Install
Forums
New posts
All threads
Latest threads
New posts
Trending threads
Trending
Search forums
What's new
New posts
New ads
New profile posts
Latest activity
Free Ads
Latest reviews
Search ads
Members
Current visitors
New profile posts
Search profile posts
Contact us
Latest ads
Colombo
YEYE 3 in 1 Instant Coffee Mix 50 Sachet
Romeshka
Updated:
Today at 12:16 AM
Colombo
Red Hat Certified System Administrator (RHCSA) - RHEL 10
Sanjeewani95
Updated:
Friday at 7:43 PM
NURSING , CAREGIVER , HOTEL & BEAUTY COURSES
IVA Para Medical Campus
Updated:
Thursday at 9:24 AM
Handmade Character Soft Toys Peppa Pig Family
anil1961
Updated:
Jul 1, 2026
Ad icon
Video Content Creator
pramukag
Updated:
Jun 28, 2026
Electronics
Vehicles
Property
Search
Reply to thread
Forums
General
ElaKiri PRO!
Rogue Antivirus Product Wars...
Get the App
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Message
<blockquote data-quote="Pura Pagal" data-source="post: 7111106" data-attributes="member: 97277"><p><span style="font-family: 'Verdana'"><span style="font-size: 12px"><span style="color: Black">All antivirus companies are being hit with the next wave of malware: Rogue antivirus tools like Antivirus 2010. This code throws messages on the user's screen that they are infected, and "download here to get rid of the malware". Sure enough, that gets the Trojan installed. No AV vendor can give you 100% coverage against it</span></span></span></p><p><span style="font-family: 'Verdana'"><span style="font-size: 12px"><span style="color: Black"> </span></span></span></p><p><span style="font-family: 'Verdana'"><span style="font-size: 12px"><span style="color: Black"> These new fake antivirus variants are some of the most vicious, polymorphic Trojans this industry has seen. They use extremely complex obfuscation techniques which make detection quite challenging by even the best antivirus engine. Many of these rogues are also service-side polymorphic. That means every time an exe is downloaded, it's recompiled on the server-side into a different piece of code.</span></span></span></p><p><span style="font-family: 'Verdana'"><span style="font-size: 12px"><span style="color: Black"> </span></span></span></p><p><span style="font-family: 'Verdana'"><span style="font-size: 12px"><span style="color: Black"> And, there are about 75,000 new tier-1 pieces of malware coming out every day. So your AV vendor, realistically, is only going to be one layer of protection, no matter what the sales guy might say. (That being said, AV is a must. Just look at viruses like Conficker, Sality, Virut, etc. These are viruses that the industry does a pretty good job at, and if they get into your network and you don't have endpoint protection, it's quite messy)</span></span></span></p><p><span style="font-family: 'Verdana'"><span style="font-size: 12px"><span style="color: Black"> </span></span></span></p><p><span style="font-family: 'Verdana'"><span style="font-size: 12px"><span style="color: Black"> Key things to do are:</span></span></span><span style="font-size: 12px"><span style="color: Black"></span></span></p><p><span style="font-size: 12px"><span style="color: Black"></span></span></p><p><span style="font-size: 12px"><span style="color: Black">1) No Admin Privs. Try to run as many users on Limited User accounts as you can (always difficult, I know). It won't stop all infections, but it does make a difference -- probably 80% reduced infection vector</span></span></p><p><span style="font-size: 12px"><span style="color: Black"></span></span></p><p><span style="font-size: 12px"><span style="color: Black">2) Patch aggressively. The key exploit vectors right now are PDF and Flash, then Windows/IE. When browsing the web, obsessively check Adobe and Flash to make sure you are fully patched, and constantly check Windows update. It really is an absolute must</span></span></p><p><span style="font-size: 12px"><span style="color: Black"></span></span></p><p><span style="font-size: 12px"><span style="color: Black">3) Educate yourself. The vast majority of infections these days are caused by social engineering. A user will get a funny video link on Facebook or some other social networking site, click on it, and it will say that they need to "install a special codec", or "update Flash". Or they will be doing a Google search and a malware site will have attached itself to an innocent keyword. The user will click and start getting crazy warnings that their machine is infected. This is the malware trying to get the user to install. If something does not look right, it probably is not right - DON'T CLICK ON IT!</span></span></p><p><span style="font-size: 12px"><span style="color: Black"></span></span></p><p><span style="font-size: 12px"><span style="color: Black">4) Do malicious web filtering. There are tens of thousands of pieces of malware daily, but only a few thousand new malware sites a day. Many endpoint protection tools, offer malicious web filtering</span></span></p><p><span style="font-size: 12px"><span style="color: Black"></span></span></p><p><span style="font-size: 12px"><span style="color: Black">5) Submit malware files to AV vendors. Most, if not all, AV vendors take customer submissions very seriously, and the internal escalations are always senior to anything else</span></span><span style="font-size: 12px"><span style="font-family: 'Verdana'"><span style="color: Black"></span></span></span></p><p><span style="font-size: 12px"><span style="font-family: 'Verdana'"><span style="color: Black"></span></span></span></p><p><span style="font-size: 12px"><span style="font-family: 'Verdana'"><span style="color: Black"></span></span></span></p><p><span style="font-size: 12px"><span style="font-family: 'Verdana'"><span style="color: Black"></span></span></span></p><p><span style="font-size: 12px"><span style="font-family: 'Verdana'"><span style="color: Black"></span></span></span><a href="http://www.elakiri.com/forum/search.php?do=finduser&u=97277&starteronly=1" target="_blank"><strong><span style="font-family: 'Verdana'"><span style="font-size: 12px"><span style="color: Red">All my threads...</span></span></span></strong></a></p><p><strong><span style="color: Red"><span style="font-size: 12px"><span style="font-family: 'Verdana'"></span></span></span></strong></p><p><strong><span style="color: Red"><span style="font-size: 12px"><span style="font-family: 'Verdana'"></span></span></span></strong></p><p><strong><span style="color: Red"><span style="font-size: 12px"><span style="font-family: 'Verdana'"></span></span></span></strong><span style="font-size: 12px"></span></p><p><span style="font-size: 12px"></span></p><p><span style="font-size: 12px"></span></p></blockquote><p></p>
[QUOTE="Pura Pagal, post: 7111106, member: 97277"] [FONT=Verdana][SIZE=3][COLOR=Black]All antivirus companies are being hit with the next wave of malware: Rogue antivirus tools like Antivirus 2010. This code throws messages on the user's screen that they are infected, and "download here to get rid of the malware". Sure enough, that gets the Trojan installed. No AV vendor can give you 100% coverage against it These new fake antivirus variants are some of the most vicious, polymorphic Trojans this industry has seen. They use extremely complex obfuscation techniques which make detection quite challenging by even the best antivirus engine. Many of these rogues are also service-side polymorphic. That means every time an exe is downloaded, it's recompiled on the server-side into a different piece of code. And, there are about 75,000 new tier-1 pieces of malware coming out every day. So your AV vendor, realistically, is only going to be one layer of protection, no matter what the sales guy might say. (That being said, AV is a must. Just look at viruses like Conficker, Sality, Virut, etc. These are viruses that the industry does a pretty good job at, and if they get into your network and you don't have endpoint protection, it's quite messy) Key things to do are:[/COLOR][/SIZE][/FONT][SIZE=3][COLOR=Black] 1) No Admin Privs. Try to run as many users on Limited User accounts as you can (always difficult, I know). It won't stop all infections, but it does make a difference -- probably 80% reduced infection vector 2) Patch aggressively. The key exploit vectors right now are PDF and Flash, then Windows/IE. When browsing the web, obsessively check Adobe and Flash to make sure you are fully patched, and constantly check Windows update. It really is an absolute must 3) Educate yourself. The vast majority of infections these days are caused by social engineering. A user will get a funny video link on Facebook or some other social networking site, click on it, and it will say that they need to "install a special codec", or "update Flash". Or they will be doing a Google search and a malware site will have attached itself to an innocent keyword. The user will click and start getting crazy warnings that their machine is infected. This is the malware trying to get the user to install. If something does not look right, it probably is not right - DON'T CLICK ON IT! 4) Do malicious web filtering. There are tens of thousands of pieces of malware daily, but only a few thousand new malware sites a day. Many endpoint protection tools, offer malicious web filtering 5) Submit malware files to AV vendors. Most, if not all, AV vendors take customer submissions very seriously, and the internal escalations are always senior to anything else[/COLOR][/SIZE][SIZE=3][FONT=Verdana][COLOR=Black] [/COLOR][/FONT][/SIZE][URL="http://www.elakiri.com/forum/search.php?do=finduser&u=97277&starteronly=1"][B][FONT=Verdana][SIZE=3][COLOR=Red]All my threads...[/COLOR][/SIZE][/FONT][/B][/URL] [B][COLOR=Red][SIZE=3][FONT=Verdana] [/FONT][/SIZE][/COLOR][/B][SIZE=3] [/SIZE] [/QUOTE]
Insert quotes…
Verification
Winadiyakata thappara keeyak tibeda?
Post reply
Top
Bottom