New Anti-Virus Evasion Technique Discovered

Discussion in 'other security issues & news' started by Thankful, Nov 22, 2008.

Thread Status:
Not open for further replies.
  1. Thankful

    Thankful Savings Monitor

    Joined:
    Feb 28, 2005
    Posts:
    6,571
    Location:
    New York City
    Thankful, Nov 22, 2008
    #1
  2. GES/POR

    GES/POR Registered Member

    Joined:
    Nov 26, 2006
    Posts:
    1,490
    Location:
    Armacham
    Very nice read, TY
     
    GES/POR, Nov 22, 2008
    #2
  3. kwismer

    kwismer Registered Member

    Joined:
    Jan 4, 2008
    Posts:
    240
    isn't this sort of thing defeated by things like mcafee's scriptscan or any other scanner that intercepts calls to the scripting engine rather than intercepting network traffic the way a gateway scanner does? i mean, the javascript still gets assembled in the client's memory and then sent to the scripting engine to run - scriptscan and similar technologies should be able to handle that...

    further, isn't calling that initial bit of javascript non-malicious a bit of a stretch? it's the javascript equivalent of a downloader trojan... as such there's no reason not to create signatures for it...
     
    kwismer, Nov 22, 2008
    #3
  4. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    this is a prime example of why firefox and noscript are indispensable tools
     
    firzen771, Nov 22, 2008
    #4
  5. kwismer

    kwismer Registered Member

    Joined:
    Jan 4, 2008
    Posts:
    240
    that too, but only a minority of us are so protected...
     
    kwismer, Nov 23, 2008
    #5
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...