Critical Flaw Found In Virtually All AV Software

Critical Flaw Found In Virtually All AV Software 279

Posted by Soulskill on Sunday May 09, 2010 @10:20AM from the if-only-there-were-something-more-monolithic-to-blame dept.

Securityemo writes "The Register is running an article about a new method to bypass antivirus software, discovered by Matousec. By sending benign code to the antivirus driver hooks, and switching it out for malicious code at the last moment, the antivirus can be completely bypassed. This attack is apparently much more reliable on multi-core systems. Here's the original research paper." El Reg notes that "The technique works even when Windows is running under an account with limited privileges," but "it requires a large amount of code to be loaded onto the targeted machine, making it impractical for shellcode-based attacks or attacks that rely on speed and stealth. It can also be carried out only when an attacker already has the ability to run a binary on the targeted PC."

Critical Flaw Found In Virtually All AV Software

This discussion has been archived. No new comments can be posted.

Search 279 Comments Log In/Create an Account

Comments Filter:

AHHHHHHHH (Score:5, Funny)

by Anonymous Coward writes: on Sunday May 09, 2010 @10:21AM (#32146756)

Everybody turn your PCs off NOW! Why are you still reading?

Joke's on them! (Score:5, Funny)

by Abstrackt ( 609015 ) writes: on Sunday May 09, 2010 @10:28AM (#32146798)

I don't run AV software! Ha!

Anagram? (Score:5, Funny)

by Theaetetus ( 590071 ) writes: <theaetetus,slashdot&gmail,com> on Sunday May 09, 2010 @11:15AM (#32147132) Homepage Journal

"Matousec"? Hmm...
"To use Mac"? Hey!

Comment removed (Score:5, Funny)

by account_deleted ( 4530225 ) writes: on Sunday May 09, 2010 @01:08PM (#32148000)

Comment removed based on user account deletion

Re:Ubuntu (Score:1, Funny)

by Anonymous Coward writes: on Sunday May 09, 2010 @02:07PM (#32148366)

I gave ubuntu a try a few days ago.
First: my Nvidia 7600GO stopped working, reinstalled the drivers.. no joy, whent to the irc help channel, noone responded. looked through the forums, found a few others with similar problems, but no solutions.
gah, so i reinstalled ubuntu. Shit worked now!
Then wifi suddenly started toggling on and off.. no help from forums or irc ... reinstalled, for the second time in 2 days.
after a whole day of use, with no problems, screen started flickering... GAH.. reboot doesnt help, i boot to windows see if the problems there aswell, nope. works great in windows!
I uninstalled the piece of shit OS, 3 major issues in 3 days.
4 years of windows on the same machine, without any reason to reinstall the OS. ( i upgraded from XP->Vista->Windows 7 ).
Im not a ms chill, i really wanted to like ubuntu.

PS Windows 7 is faster ( after boot ) then Ubuntu... with Aero on.

Re:Ubuntu (Score:2, Funny)

by Anonymous Coward writes: on Sunday May 09, 2010 @03:05PM (#32148684)

And if Velma's desktop were set up properly, with her having a non-administrative account and the home partition mounted non-executable? Oh right, she wouldn't be able to run the malware.

Re:Ubuntu (Score:5, Funny)

by 517714 ( 762276 ) writes: on Sunday May 09, 2010 @05:23PM (#32149424)

Nobody calls you paranoid, you just think they do.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Critical Flaw Found In Virtually All AV Software 279

Critical Flaw Found In Virtually All AV Software More Login

Critical Flaw Found In Virtually All AV Software

AHHHHHHHH (Score:5, Funny)

Joke's on them! (Score:5, Funny)

Anagram? (Score:5, Funny)

Comment removed (Score:5, Funny)

Re:Ubuntu (Score:1, Funny)

Re:Ubuntu (Score:2, Funny)

Re:Ubuntu (Score:5, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot