Jump to content

Trojans, viruses, worms: How does malware get on PCs and Macs?


Haider

Recommended Posts

If you install security updates regularly, your risk of being affected by a drive-by download is virtually zero.
The overwhelming majority of malware is installed by the victim, who is fooled by social engineering.

The "its YOUR fault" implications of these statements is a bit exaggerated.

Alureon (aka Zlob) is a data-stealing Trojan found mostly in the enterprise space. It dates all the way back to March 2007.

Alureon and Zlob are not even close to the same. Zlob is a long dead fakealert trojan that hijacked your browser to show fake error pages (loaded with rogues that would "fix" the "problem") and also directly installed the rogue of the month. Alureon is much better known as TDSS and is a powerful rootkit that uses patched drivers, MBR load points and can even infect through the self protection built into 64 bit versions of Windows. Zlob was usually installed via fake codecs but Alureon/TDSS uses just about every known method including exploits, paid trojan delivery services, fake cracks/keygens and yes even fake codecs. Zlob was mostly a home user problem and Alureon is not much different. Neither would be considered an enterprise targeting trojan.

Even a noob that never has done any research on malware ever could have used google to fact check that one and see that it is all wrong.

Link to post
Share on other sites

Thanks Bruce: for guiding us in right direction. I don't understand why these bloggers mislead general public?

There is no way this is intentional, he just does not know anything about malware beyond a few soundbites and buzz words.

Link to post
Share on other sites

There is no way this is intentional, he just does not know anything about malware beyond a few soundbites and buzz words.

I think this is the case with a lot of reporters/bloggers/writes they do some quick research and find anyone that is willing to say they are an expert to seek advice without checking the facts... ;)

Link to post
Share on other sites

I didn't even read the full thing and could tell whoever wrote it doesn't have a clue what they are talking about. Not confident on anything, but 35% accuracy of the blog.

If you install security updates regularly, your risk of being affected by a drive-by download is virtually zero.

Browser vulnerabilities also play a role.

Alureon (aka Zlob) is a data-stealing Trojan found mostly in the enterprise space. It dates all the way back to March 2007.

Like Bruce said it's TDSS rootkit. Any actual in depth research would tell you this.

Link to post
Share on other sites

Alureon (aka Zlob) is a data-stealing Trojan found mostly in the enterprise space. It dates all the way back to March 2007.

Like Bruce said it's TDSS rootkit. Any actual in depth research would tell you this.

Even a quick Google search is enough for this one.

potpD.png

Wasn't it that Ed Bott guy who wrote that misleading anti-Firefox article, too?

Edit: Aha, found it: http://www.zdnet.com/blog/bott/why-internet-explorer-will-survive-and-firefox-wont/3064

He's a funny guy. Haha.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.