Very unclear about Zemana's anti SSL logging protection

Discussion in 'other anti-malware software' started by Morthawt, Nov 18, 2014.

  1. Morthawt

    Morthawt Registered Member

    Joined:
    Jul 10, 2008
    Posts:
    79
    Location:
    UK
    I have read this page about it: http://www.zemana.com/product/antilogger/modules/anti-ssllogger.aspx

    However, this feels like very vague information. Can someone please give me some examples of things that would be prevented with this software? I thought it might prevent programs sniffing the raw data that is inside fields, but I busted that idea by using AutoIt to manually login to my digitalocean account and check some details on my account.

    So I would like to be able to explain "This SSL protection would prevent hackers from doing X Y Z because it has a low level driver that prevents XYZ" and any other techniques that it prevents, so that I fully understand the usefulness of this and not feel like it is snakeoil. When ever something, somewhere, is vaguely explained like this I get very suspicious if they do not say what exactly it prevents.

    All they say is "AntiLogger's unique proactive protection prevents your personal information from being stolen while you are conducting online banking transactions or e-commerce using an encrypted SSL" Really? That explains nothing at all. So I would appreciate it if someone could unpack this and explain some examples of what this feature can actively protect you from.

    Thanks.
     
  2. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    3,771
    Location:
    Outer space
  3. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,046
    Location:
    The Netherlands
    There was already a thread about this, but without some info from Zemana we will probably never know the exact techniques that they are using. I do know that HMPA is using quite advanced methods to detect banking trojans. However, it does not try to block them, while Trusteer, Zemana and SpyShelter all claim that they actually do. I believe the last 3 basically try to undo/unhook malicious modifications to browser memory, while HMPA will urge you to scan your whole system, to remove the malware.
     
  4. Morthawt

    Morthawt Registered Member

    Joined:
    Jul 10, 2008
    Posts:
    79
    Location:
    UK
    Well as long as it is beneficial, that is what matters.
     
  5. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,046
    Location:
    The Netherlands
    Yes according to certain tests (from MRG Effitas) it did do quite a good job, but sometimes it was also bypassed by malware. I'm guessing they have improved protection against these newer malware techniques.
     
Loading...