Suspected PayPal Hackers Seek Deal To Stay Out Of Prison
Scripps Employees Called 'Hackers' For Exposing Massive Security Flaw
Microsoft confirms Security Essentials, Forefront not affected by Matousec exploit
Especially when you report this news on a post entitled "KHOBE: 8.0 earthquake for Windows desktop security software."
There's something that was a bit understated, however. A number of security researchers who don't work at Matousec -- like Sophos' Graham Cluely and Microsoft's Feliciano Intini have pointed out that this exploit only works if an attacker has already gained the ability to execute arbitrary code. Need some clarification on that?
It means the Matousec exploit allows attackers to do something they were already able to do anyway.
When I wrote about the report last week, I was curious why none of Microsoft's software was on the list. As it turns out, they may have been convenient omissions. Microsoft researchers have confirmed that neither of their current antivirus apps -- Forefront and Microsoft Security Essentials -- are vulnerable to the Matousec exploit.
Comments
5
Subscribe to comments5hRreDDyMay 13th 2010 3:07PM
I've been impressed with MSE ever since the beta was released. I suppose this is another feather in its cap, even if it is only a small feather.
AnthonyMay 13th 2010 9:32PM
Same here. I used to install a combo of AVG Free and Spybot, a lethal combo (for the users, anyway) on the computers of people I was supporting. Now I've used nothing but MSE. It's been running great on everyone's computers so far, even on old P4s. Love it! I don't think the PC magazines give it a fair review. They try to state all the things it doesn't have (IM scanning, e-mail scanning, and a firewall), but it has been proven that e-mail scanning is an unnecessary extra since most services do that anyway, and the firewall built-in to Windows is actually really good. They seem to forget that MSE scans every file once it hits the system. It's caught everything I've thrown at it, and the firewall built-in to Windows has not let any exploits through. I actually recommend MSE over the others.
Peter IanMay 14th 2010 4:39AM
Ummm... Duh.. Microsoft "owns" their kernel, so they should know the smarts about evading malware.. Though that, Symantec.. :P
jfjbMay 15th 2010 9:21PM
Just remember this guys: an opinion is only an opinion, not fact:
if (NT_SUCCESS(status))
status=OldNtTerminateProcess(ProcessHandle,ExitStatus);
return status;
It's that simple: most problems occur between the chair and the keyboard, of the user. Including mine.
jfjbMay 15th 2010 9:26PM
P.S. @ Lee,
This article, as my response, do not add anything to the on-going saga of spread-the-fear, an old adage Julius Cesar formulated way back when in more simple words: divide to conquer.
The real subject is away from the question you inferred, or implied.
State your position or be a teacher who promotes thinking, but do not carry the sound of the wind -- one of my philosophy teachers taught me.