Anti-Virus Exploit

[TheMailMan78]

Just read this a few minutes ago and thought it was a good read. The whole article is at the bottom.

"Researchers from data exfiltration prevention company enSilo found six common security issues affecting over 15 products when they studied how software vendors use ‘hooking’ to inject code into a process in order to intercept, monitor or modify the potentially sensitive system API (application programming interface) calls made by that process."

and

"Antivirus programs accounted for most of the affected products the security company identified, but one vulnerability also exists in a commercial hooking engine developed by Microsoft and used by over 100 other software vendors.

EnSilo identified affected products from AVG, Kaspersky Lab, McAfee/Intel Security, Symantec, Trend Micro, Bitdefender, Citrix, Webroot, Avast, Emsisoft and Vera Security. "

http://www.pcworld.com/article/3096...s-code-hooking-opens-the-door-to-hackers.html

 

[Frick]

The only seriois virus I've had spread with the virus scan. That was some time ago though.

 

[TheMailMan78]

The only seriois virus I've had spread with the virus scan. That was some time ago though.

WTF does that even mean?

 

[Frick]

WTF does that even mean?

I got a virus, and it used the AV scan to spread. Something like it anyway, but there was a tool that removed it. It was pretty common at the time. This is probably something different.

 

[DeathtoGnomes]

I got a virus, and it used the AV scan to spread. Something like it anyway, but there was a tool that removed it. It was pretty common at the time. This is probably something different.

The epitome of vague. AKA: Gibberish.

I got a virus once, doc gave me a shot and I flushed it the next day.

on topic: There have been articles similar to that in the past that caused a lot of mayhem with the AV companies customer service and their forums. I'd bitch at them too if I paid for AV and found out they left back doors in their software for anyone to access. That was about the time I quit using AV's and started to pay attention what things are truly risky, like the messenger apps, toolbar addons, and a few other things.

Tighten up on your firewall knowledge and security then maybe you have a chance to hide from the amateur hackers, the ones that truly want to do damage to everyone.

 

[rtwjunkie]

I wonder if Malwarebytes AntiExploit would help mitigate some of these vulnerabilities, until patched?

 

[DeathtoGnomes]

I wonder if Malwarebytes AntiExploit would help mitigate some of these vulnerabilities, until patched?

I thought that was targeted for 0-dayz, not back doors. IDK

 

[basco]

not using any antivirus software for years now.
i do no online banking or something that needs protection.
fresh install every 1-2 years.
if i suspect something maybe an gratis online scan.

 

[FYFI13]

not using any antivirus software for years now.
i do no online banking or something that needs protection.
fresh install every 1-2 years.
if i suspect something maybe an gratis online scan.

Same. Haven't had a virus for ages so not using any AV.
When i need to visit some shady website i use my laptop with Ubuntu 16.04 Mate on it.
For online banking i use virtual machine with Ubuntu live image on it.
Not saving any passwords in my web browser - all passwords are encrypted in KeePass.
All files backed up on external hard drives.
I'd be one of worst/useless targets for any hacker

 

[RejZoR]

The only seriois virus I've had spread with the virus scan. That was some time ago though.

It didn't spread by virus scan, it spread by file access. If you did a Windows search, you'd create the same effect. Or by executing programs and opening files, depšending on the scope of infection. Usually it was Virut that behaved like this...

 

[lorraine walsh]

So that means is it not safe to deploy these software for protection? We pay them to secure our systems and they counter-attack on us with their pathetic flaws, isn't that should be enough to already penalize them?