dbarrow
05-28-2006, 03:20 PM
http://castlecops.com/article-6595-nested-0-0.html
anee writes "A new variant of the StartPage Trojan spreads via Internet Explorer vulnerabilities and emails carrying “.zip” and “.exe” files. Security Experts at the leading AntiVirus and Content Security firm MicroWorld Technologies, inform that ‘BAT.StartPage.b’ changes Internet Explorer settings, lowers security levels and installs itself in the registry.
*note the "installs itself in the registry", an important reason to have installs blocked and the registry locked!
...Though these Trojans are detected by many AntiVirus Software, most of them fail to remove the malware completely. In those cases it’s observed that, after a cleaning process the Trojan sprouts back in action with new names and process IDs. ....
*self replicator! The reg keys tell it if it can't find itself, reproduce!
...We at MicroWorld swear by our Proactive Protection in Real-Time, so these sneaky breeds never find an entry in your computer in the first place,” says Govind Rammurthy, CEO, MicroWorld Technologies. ...
* The whole point in a nutshell
...To protect the internal network of organizations against attacks via the Internet, MicroWorld has developed a revolutionary firewall branded as eConceal, offering great usability and advanced stealth mode. To be launched in June 2006, eConceal provides customizable security with user-defined Rules for Packet Filtering and Access Control. ...
*Something to watch for ... maybe dig up a beta.
have to look into this one further
anee writes "A new variant of the StartPage Trojan spreads via Internet Explorer vulnerabilities and emails carrying “.zip” and “.exe” files. Security Experts at the leading AntiVirus and Content Security firm MicroWorld Technologies, inform that ‘BAT.StartPage.b’ changes Internet Explorer settings, lowers security levels and installs itself in the registry.
*note the "installs itself in the registry", an important reason to have installs blocked and the registry locked!
...Though these Trojans are detected by many AntiVirus Software, most of them fail to remove the malware completely. In those cases it’s observed that, after a cleaning process the Trojan sprouts back in action with new names and process IDs. ....
*self replicator! The reg keys tell it if it can't find itself, reproduce!
...We at MicroWorld swear by our Proactive Protection in Real-Time, so these sneaky breeds never find an entry in your computer in the first place,” says Govind Rammurthy, CEO, MicroWorld Technologies. ...
* The whole point in a nutshell
...To protect the internal network of organizations against attacks via the Internet, MicroWorld has developed a revolutionary firewall branded as eConceal, offering great usability and advanced stealth mode. To be launched in June 2006, eConceal provides customizable security with user-defined Rules for Packet Filtering and Access Control. ...
*Something to watch for ... maybe dig up a beta.
have to look into this one further