Search
Recent Post
- How To Exploit A Format String Vulnerability
- Playing With Dns And Domain Names
- How To Get A Person Ip Via Msn Or Yahoo Ect.
- CR-LF injection(carriage return- line feed injection)
- [PAPER] Self spreading Malware for Soho Routers
- Assault On Oracle Pl/sql - Injection
- PHP modify PE header
- Safe Mode Bypass PHP 5.2.5 & 5.2.6
- Local File Inclusion Mysql Get Password
- [Video] Acquire root using c99 shell
Recent Comments
- admin:Sure :)
- Reader:Good work! Thank you very much
- Mr WordPress:Hi, this is a comment.To
Popular
- Playing With Dns And Domain Names (02-01-2009)
- Full MSSQL Injection PWNage (02-02-2009)
- Run Program From Memory And Not File (01-22-2009)
- Hackers View [HIEW] (01-22-2009)
- How To Get A Person Ip Via Msn Or Yahoo Ect. (02-01-2009)
- Hackers using antivirus to sneak into computers (01-22-2009)
- PHP modify PE header (02-01-2009)
- The TCP/IP Guide (01-22-2009)
- Vodafone Hack for Free GPRS (01-22-2009)
- Hacking Windows Administrator Password (01-22-2009)
Hackers using antivirus to sneak into computers
January 22nd, 2009 by adminIf you are using AVG, F-Secure (F-Prot), Sophos, ClamAV, BitDefender, Avast or any such easy-to-download antivirus software for your PC,
it’s time you sat up and took notice. An information security company set up by IIT Kharagpur engineers has found hackers using these antiviruses to break into the system.
“An attacker first crafts an email with malicious payload and sends it to the target user. When the email is scanned by the vulnerable antivirus software it either crashes the antivirus software or executes arbitrary code resulting in complete security
bypass and remote system compromise,” said iViZ vice-president (head of product management & marketing) Bala Girisaballa.
Home PCs apart, companies and businesses in banking, finance and insurance, IT/ITES and consulting, online retail, e-commerce, manufacturing, telecommunications and R&D are highly susceptible to such risks. If the antivirus crashes, it can even cause remote system compromise. Attackers can steal information or cause denial of service’ condition.
Leave a Reply