Malware's use of the default browser

Discussion in 'other firewalls' started by Joeythedude, Apr 9, 2009.

Thread Status:
Not open for further replies.
  1. Joeythedude

    Joeythedude Registered Member

    Joined:
    Apr 19, 2007
    Posts:
    519
    I remember reading that it was best to set another browser than IE as the default browser as malware would often use that setting when trying to phone home.

    Is that still true ?

    Does much known malware use the default browser setting when it tries to phone home ?
     
  2. Julian

    Julian Registered Member

    Joined:
    Sep 14, 2008
    Posts:
    103
    Yes, malware learned to use multiple browsers, using Firefox to send data is common.
     
  3. raven211

    raven211 Registered Member

    Joined:
    May 4, 2005
    Posts:
    2,567
    Opera?
     
  4. Julian

    Julian Registered Member

    Joined:
    Sep 14, 2008
    Posts:
    103
    Don't know but would find the answer interesting.

    A comment of an expert would be appreciated :)
     
  5. Dogbiscuit

    Dogbiscuit Guest

    In an admin account, malware can do virtually anything it's programmed to do once it's running (i.e., take complete control of a system). That includes changing the default browser, disabling the current browser, etc.

    See here for an example.
     
  6. Joeythedude

    Joeythedude Registered Member

    Joined:
    Apr 19, 2007
    Posts:
    519
    Is there any statistics of the common behaviours/practices of malware in the wild ?

    For example if say 30% would have included the code to change the default browser if need ? After all they can't cover every user senario , esp when they don't need to .

    I'm interested in simple steps to block the majority of what real-world malware currently does , rather than going for ironclad protection levels.
     
  7. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,779
    See any of the several threads here on LUA/SRP etc. That is probably your best bet.
     
  8. Dogbiscuit

    Dogbiscuit Guest

    I don't know of any offhand.
    Do you mean you're interested in blocking what real-world malware does once it's on your system, or blocking real-world malware from getting on your system in the first place?
     
  9. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    2,433
    Location:
    Europe
    Don't you think to use an HIPS ?
     
  10. Joeythedude

    Joeythedude Registered Member

    Joined:
    Apr 19, 2007
    Posts:
    519
    Well i'd like to keep this thread on how useful/accurate the advice about the default browser is these days , if a person didn't use anything apart from a standard security suite.
     
Thread Status:
Not open for further replies.