iTWire - TrustDefender and the Trojan Vundo story

IT&T JOBS|Discussion forum|Technology Events|IT Education|

Today on iTWire IT News Telecommunications People Our Blogs Tech Lifestyle Releases Science Sustainability MyProfile Whitepapers

Daily ICT Newsletter FREE TRIAL

Follow the Australian Telecommunications scene NEWSLETTER- FREE TRIAL

Fuzzy Logic with Alex Zaharov-Reutt

Technology news and Jobs

TrustDefender and the Trojan Vundo story

TrustDefender and the Trojan Vundo story

E-mail

by Alex Zaharov-Reutt
Sunday, 21 December 2008
Page 3 of 3 ”Some technical details: Featured Whitepaper 5 Best Practices for Smartphone Support “The Trojan consisted of three DLL’s. No executables were involved – this was clearly done to avoid detection from security tools that check the running processes. “Two DLL’s were started during system startup with two entries into the HKLM\…\Run section with rundll32.exe (which is a totally legitimate Microsoft application) and one DLL was registered as a Browser-Helper-Object (BHO) in Internet Explorer. “Interestingly all three DLL’s were NOT visible in the Windows Explorer as they used user-mode rootkit techniques to avoid detection. “All three components checked the presence of each other, meaning that if you only remove the BHO but not the other DLL’s, the BHO will be automatically re-created. And if you remove the two startup DLLS’s but not the BHO, the two startup DLL’s will be recreated automatically as well. “Virustotal Detection is unfortunately again very low! “Nezusena.dll – payload (9/38 – 23.69%) – “BTW: One of the offered rogue Antivirus Engines had the filename InstallAVg_770522170802.exe! Sounds familiar, doesn’t it? “TrustDefender “A quick note on TrustDefender: Even though Vundo does not try to steal confidential information like username/passwords, TrustDefender picked up the Vundo DLL’s from the first second with our whitelisting approach and the DLL’s were automatically removed from memory on-the-fly. “Our rootkit scanner detected them without any problems. All TrustDefender users were protected, especially for any enterprises (Online businesses) that use the TrustDefender system, for all Financial Institutions that are part of our Financial Trust Network and for all self-defined websites.” So, there ends the Trojan Vundo story. With TrustDefender able to stop known and unknown Trojans from sneaking into your banking and other online transactions, which existing anti-virus programs aren’t doing, I wonder how long it will be before TrustDefender gets snapped up by Symantec or one of its competitors? After all, the underground cyber criminal economy has grown in 2008, to incredible levels never before seen, worth untold billions of dollars. With 2009 set to be even worse, online cybercrime is new “technology” boom at a time when the rest of the world is going through an economic crisis. Given that TrustDefender has a solution for any organisation wanting to transaction online with its consumers, it’s clearly only a matter of time before more financial and other institutions offer it free of charge to their customers, so that they are part of the bank’s or organisation’s overall security chain - for the first time. Tags See All Tags Alex ZaharovReutt Banking Business Business software Commerce Company Consumers Credit Cards Credit Crunch Crime Cyber attacks Cybercrime Data Loss Data Protection Digital Economy Ecommerce Electronic funds transfer Enterprise Governance Government Identity Identity Theft Internet Internet Security Malware Norton 2009 Norton Internet Security Security Software Spyware Trojan Trojan Horse Trojans Viruses Web account banks business intelligence eCrime eGovernment eHealth eServices etailing global financial crisis reliability Powered By Joomla Tags Please enable JavaScript in your browser to post your comment! << First page < 1 2 3 Next page > Last page - Post your comment >>

< Next story in category		Previous story in the category >

Sponsored Releases

Heathrow Airport Terminal 5 Live with Progress Software

Open Text Deepens Integration with SAP® Solutions

As Christmas Nears, AVG (AU/NZ) Advises Shoppers How to Stay Safe Online

Progress Software Successfully Enables SaaS Deployment in the Cloud for Fifth Year

British Airways selects Progress Software SOA Solutions to upgrade the travel experience

...Promote your press-releases here

Latest jobs

Business Analyst (M15)
VBA Access Excel Developer - CBD - Banking - Employer of Choice (S16)
Vignette Developers / Analyst Programmers - CBD - Finance (S16)
Senior Network Engineer (S24)
Systems Engineer - Java/Weblogic
Senior Systems/Business Analyst
Project Manager
Designers - Data Networks
Web Developer
IT Technical Support Manager

	Visitors last 30 days	694,279
	Subscribers	15,210

#1 independent technology news advertise here

- Advertisement -

Featured Whitepapers

	5 Best Practices for Smartphone Support Worldwide shipments of smartphones reached a high of nearly 40 million units in the third quarter of 2008, helping to grow the category by 28% from the same quarter last year.
	Legacy Tools: Not For Today’s Helpdesk Why applications like RDP, VPNs and VNC may be costing you time, money and end-user satisfaction.

Today on iTWire

Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

website free tracking