Discussion in 'malware problems & news' started by ronjor, Mar 15, 2012.
No surprises there.
Is it possible, for an experienced user, to use the advanced details GUI to get more info on the publisher on Windows Vista or 7, and by that determine it is stolen?
Doubtful unless the information that the certificates were stolen was available.
I don't understand...
If the malware gets that far, then the organization doesn't have proper security in place.
Stuxnet, for example, if people have forgotten:
Possible New Rootkit Has Drivers Signed by Realtek
July 15, 2010
If no secure USB policies were in place, then protection against unauthorized excutables would stop this at the gate.
I am relying on digital signatures for three years now (UAC deny elevation of unsigned programs). So I have been following news on this item with some attention.
Until now the "in the wild" statistics of signed malware versus updated black lists of AV's are by far in the advantage of signed malware (more scarce than malware not yet listed in AV data bases).
Separate names with a comma.