IE7 updates directory attacked by drive by malware

Discussion in 'other security issues & news' started by Kees1958, Jun 18, 2008.

Thread Status:
Not open for further replies.
  1. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Hi,

    In XP some of you will have a hidden sytem directory in your windows directory named IE7, also a directory (visible) IE7 updates. In all directories IE7 executables exist.

    Our IT system manager told me today that a employee was infected with a drive by malware (visiting a porn site), the dropper targetted IE7 in the latest IE7 update directory.

    With both a directory and image check sum in your outbound firewall you problably are safe, or better protect it with a policy sandbox or limited user approach, all anti executable like HIPS wiith same image/directory check will stop it also.

    Regards K
     
    Last edited: Jun 18, 2008
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.