Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Virus
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Microsoft AntiSpyware falling further behind

from [Duston Sickler] Network Security [Permanent Link]
Subject: Re: Microsoft AntiSpyware falling further behind
Date: Wed, 26 Oct 2005 09:18:10 -0500 
Hello Mr. Travis,

While I agree that AntiSpyware from all venders has a long way to go I would hope they would concentrate on binary detection over cookies. In comparison cookies pose little security risk. I would much rather have a AntiSpyware app that did no cookie detection but did an excellent job of of stopping rouge binaries from landing on my HDD.

Hope everyone is having a good week,

Duston Sickler, A+, MCP
www.shonsey.com

Quark IT - Hilton Travis wrote:

Hi All,

It seems that not only does Microsoft AntiSpyware recommend that
Claria's spyware is ignored, but it also misses a significant amount of
cookies that are placed on a system - I have a VPC environment where I
browse the Internet so that anywhere I go won't affect my regular
Windows session/installation.  Regularly CounterSpy is detecting cookies
(such as Cok.ad.yieldmanager, CGI-Bin, Cok.AssassinTrojan2.0 and Zedo
(from yesterday's browsing)) that Microsoft AntiSpyware simply does not
know about.

Now, this is not only disappointing, but potentially dangerous.  Any
customer or end user running Microsoft AntiSpyware or CounterSpy is not
being protected from these cookies, and MSAS doesn't even detect them -
that's right, neither program's active monitoring is stopping the
installation of these cookies, but at least CounterSpy is detecting them
post-installation.

AntiSpyware is far, far from the accuracy of antivirus, especially
something like NOD32.  I wonder how long it will be before a decent
AntiSpyware application is released that, like NOD32 does with viruses,
actually stops spyware *before* it is installed?

--

Regards,

Hilton Travis                          Phone: +61 (0)7 3344 3889
(Brisbane, Australia)                  Phone: +61 (0)419 792 394
Manager, Quark IT                      http://www.quarkit.com.au
        Quark Group                   http://quarkgroup.com.au/

Microsoft Small Business Specialists

http://www.threatcode.com/ <-- its now time to shame poor coders into writing code that is acceptable for use on today's networks

War doesn't determine who is right.  War determines who is left.

This document and any attachments are for the intended recipient only. It may contain confidential, privileged or copyright material which must not be disclosed or distributed.




[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Microsoft AntiSpyware falling further behind, Shaffer, Bruce
Next by Date:  RE: Microsoft AntiSpyware falling further behind, Bruce Klein
Previous by Thread:  Microsoft AntiSpyware falling further behind, Quark IT - Hilton Travis
Next by Thread:  Re: Microsoft AntiSpyware falling further behind, Planz
Indexes:  [Date] [Thread] [Top] [All Lists]