New Anti-Virus Evasion Technique Discovered

Discussion in 'other security issues & news' started by Thankful, Nov 22, 2008.

Thread Status:
Not open for further replies.
  1. Thankful

    Thankful Savings Monitor

    Joined:
    Feb 28, 2005
    Posts:
    3,739
    Location:
    New York City
  2. GES/POR

    GES/POR Registered Member

    Joined:
    Nov 26, 2006
    Posts:
    1,490
    Location:
    Armacham
    Very nice read, TY
     
  3. kwismer

    kwismer Registered Member

    Joined:
    Jan 4, 2008
    Posts:
    240
    isn't this sort of thing defeated by things like mcafee's scriptscan or any other scanner that intercepts calls to the scripting engine rather than intercepting network traffic the way a gateway scanner does? i mean, the javascript still gets assembled in the client's memory and then sent to the scripting engine to run - scriptscan and similar technologies should be able to handle that...

    further, isn't calling that initial bit of javascript non-malicious a bit of a stretch? it's the javascript equivalent of a downloader trojan... as such there's no reason not to create signatures for it...
     
  4. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    this is a prime example of why firefox and noscript are indispensable tools
     
  5. kwismer

    kwismer Registered Member

    Joined:
    Jan 4, 2008
    Posts:
    240
    that too, but only a minority of us are so protected...
     
Loading...
Thread Status:
Not open for further replies.