Back in January, there was big news about a zero-day vulnerability in Java. Could this vulnerability allows Bad Guys software installed on your computer that allows them to (among others) into another machine on a zombie botnet. At that time, the recommendation that users disable Java in their browsers.
As you can imagine, Oracle, the company responsible for when it acquired Java Sun Microsystems took hastily fix worked. This fix is now available and you can download. Direct the attention to the new Java vulnerability led to a new approach of malware is as a solution to the vulnerability.
As it happens. New malware appears on the screen and look for the most obvious as the default window Java update and requests permission to install updates. The Java logo is, and if you're not careful, it seems legitimate. Click to order and give it permission to install malware instead of updating.
"Java Security is a kind of social engineering," said Kevin Haley, director of Symantec Security Response. "This is not a vulnerability, it's just a way to get people to click on the attachment."
Fortunately, if you have enough to ensure the safety will not really do anything, even if you give permission for the "Update". Unfortunately, there is no way to know for sure that the security prisoners. It all depends on what kind of security software you are running, and how long it has been updated. "Do you consider yourself infected shoulds," said Haley.
Haley said that Symantec provides free security scanning services that can be checked for malware, and he said that many other similar security services. These products, which you download and install on your computer, Windows, will give a full scan malware and alert you to any viruses or other malicious software. You can find this item scanning software, McAfee and Kaspersky among others.
Haley said he was surprised by the appearance of fake update Java. "There is always the former which is a zero-day vulnerability in case the thesis propaganda" Haley said. "It is in the public domain, all the bad guys want to use it. There race between patches and exploits."
The problem is much worse, Que La recent hacking kits Took it to become commercial. "These guys compete to sell their tools the bad guys," said Haley. "We see them in the field faster. You are not lying then it was before people start weak thesis."
Especially effective update the form of social engineering for people trying to spread malicious programs, simply because people are used to using almost as a reflex. Haley Symantec said that even mass e-mail claiming to be from the company containing counterfeit Symantec This update malware found.
"Do not click on attachments," said Haley, and he warned against visiting sites that you do not know is malware Fri Fortunately, most is security software, you can find sites with malware scanning and warn you or prevent you from going there.
Haley aussi noted that the major anti-virus software is not enough. He said que le Moyen distributing malware has changed, and now it's your safety should recognize attacks from a number of sources, not just viruses. Haley aussi suggest that you remove the application from your computer every fact that you do not use. "Get them out of the system, so unless you have a vulnerability." He advised aussi removal of normal data protection on mobile devices, devices Android, in particular. "We're seeing malware on Android is not the root of the device -., Which opened for malware."
"Rooting" means clustering defeating the security features built into the mobile device, que le owner can take control of the great features in the field of ICT. This goal aussi easier hackers to seize control of the remote device to take the land of malware.
FOR MORE TECHNOLOGY UPDATES CLICKHERE
Post a Comment