IE7 updates directory attacked by drive by malware

Discussion in 'other security issues & news' started by Kees1958, Jun 18, 2008.

Thread Status:
Not open for further replies.
  1. Kees1958

    Kees1958 Registered Member

    Jul 8, 2006

    In XP some of you will have a hidden sytem directory in your windows directory named IE7, also a directory (visible) IE7 updates. In all directories IE7 executables exist.

    Our IT system manager told me today that a employee was infected with a drive by malware (visiting a porn site), the dropper targetted IE7 in the latest IE7 update directory.

    With both a directory and image check sum in your outbound firewall you problably are safe, or better protect it with a policy sandbox or limited user approach, all anti executable like HIPS wiith same image/directory check will stop it also.

    Regards K
    Last edited: Jun 18, 2008
Thread Status:
Not open for further replies.