Jump to content

does mbae stop this?


blackdove83

Recommended Posts

http://labs.bromium.com/2014/02/21/the-wild-wild-web-youtube-ads-serving-malware/

Been using mbae 0.9.5.1000 and i was wondering if it covered the specific exploit used there.

It lists the CVE in that article. Thank you for mbae and any assistance in advance.

I guess youtube is no longer safe :(

P.S. im also using EMET 4.1 with maximim security and deep hooks enabled.

Link to post
Share on other sites

  • Staff

Yes, MBAE would stop this. Also MBAE is vulnerability-agnostic as well as payload-agnostic, so it really doesn't matter to us which CVE it is and whether it's a known or unknown CVE. We look at the exploit techniques used and block based on that (i.e. no signatures).

Link to post
Share on other sites

  • Staff

As an example MBAE would stop the calculator from executing via an exploit technique whereas a traditional AV/AM security product would consider that an FP because the calculator is not malicious. But to MBAE what matters is HOW it is being delivered rather than WHAT is being delivered.

Link to post
Share on other sites

I agree! Very good explanation, without all the technical jargon, on how A-E is doing it's job protecting us! This would be a great link to show someone that might be interested in also testing A-E. On that subject, I posted a topic in our forum about the pending non-support issue for XP users and the conversation led to Anti-Exploit and how that could very useful for folks that want to continue using this platform after April. http://forum.immunet.com/index.php?/topic/2525-do-you-use-windows-x-p-read-this/

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.