IE7 updates directory attacked by drive by malware

Discussion in 'other security issues & news' started by Kees1958, Jun 18, 2008.

Thread Status:
Not open for further replies.
  1. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Hi,

    In XP some of you will have a hidden sytem directory in your windows directory named IE7, also a directory (visible) IE7 updates. In all directories IE7 executables exist.

    Our IT system manager told me today that a employee was infected with a drive by malware (visiting a porn site), the dropper targetted IE7 in the latest IE7 update directory.

    With both a directory and image check sum in your outbound firewall you problably are safe, or better protect it with a policy sandbox or limited user approach, all anti executable like HIPS wiith same image/directory check will stop it also.

    Regards K
     
    Last edited: Jun 18, 2008
Loading...
Thread Status:
Not open for further replies.