Is there malware that can beat sandbox programs?

Hi!

I wonder if there is malware that would escape from a sandbox? You see, I have for years pumping my pc with different security suites, multilayer protection, and always had some sort of problem with virus or system slowing down.

So I decided to try something else. I have installed MSSE(microsoft security essentials) and sandboxie. My system is very light! I know the idea of a sandbox, and I know how to empty it on shutdown. Is there any virus/malware that can escape from this and do damage to my pc? I am not talking about files that I save to my computer, but files I leave in the sandbox and delete when shutting it down.

 

At the moment no Proof of concepts or malware are mentioned on Wilders known to escape Sandboxie. By the the new Avast 5 beta is lighter than MSE on 32 bit systems.

Regards

 

That good to hear! I have installed both apps i mentioned above on my own and my wife`s computer. It is nice to have my computer running light and easy. I will take a look at avast 5 when it is released as final.

 

If you restrict what programs you want to run and have internet access in the sandbox such as only the browser and IM program, then no malware can be activated.

 

cheater this can be done for the paid version only i guez

 

The restriction settings are in the free version as well.

 

oh i see

 

I have the paid version. I only run my browsers in the sandbox. I`m a safe user and I have never been infected through IM or mail.

But it is good to know that running a sandbox is almost bullet proof

 

http://www.youtube.com/malwaretestlabdotcom#p/u
look right at the list

 

woww big list not only sandboxie,,,

 

bla video -> version 3.34 - rather old - who uses it should not work on a computer.
a breaking program will exist anytime - the question is how you get it.
none with normal behaviour - almost only with purpose - or by stupidity...

 

i use sandboxie i've had 1 browser hijack that even after deleting sandbox firefox still couldn't open home page thanks to returnil2008 which i had on as well restarted and all is good again

 

I make sure sandboxie has the settings as tight as they can be nothing runs or has internet access except the browser.

 

I sat through 3 of those (extremely tedious) videos and sandboxie passed them all,do you have any links to failures ?

 

the idea was that even with those nasty trojans sandboxie passed...
subgud should draw the conclusions

 

Ahhh right I thought there were breaches of SBIE on there.Always of great interest since they're so rare.

 

Instead of making baseless aqusations , give us a link to test out. I really doubt that something as simple as a browser hijacking attack could bypass Sandboxie's protection

 

There have been bypasses in SBIE, documented on their forums as well, and one should not expect that it will not happen in future. But practically speaking, the chance to get across such a malware is too remote. So SBIE is almost bullet proof.

There is no pint in searching for a software that is 100 % perfect.

 

agree and each new version becomes more stronger each time. it is very strong.

 

i'm just telling you what happened
you doubt it is not my problem and
no i will not give you a link to a hijacking site

 

Has there ever been a breach of sbie when the proper run and internet access restrictions were set?

 

That is the million $ question indeed.
Most of the 'breaches' I've read about weren't in fact malware bypassing SBIE's protection,rather they were exploiting an area not covered by it,as in the case of the mouse-freezing POC.

 

Andyman,

Yea to my knowledge a "properly configured" sbie is virtually invulnerable.

 

If you don´t allow running unknown/untrusted applications then it will be very rare Sandboxie is bypassed.

But if you mean downloading stuff and running it in Sandboxie then the answer is yes, Sandboxie has been bypassed. (I know it very well)