Browsers & Online banking

[arjad]

Hello, can you tell me difference between secure browsers ( AVG, Avast, F secure...) and Bitdefender, Eset .. banking browsers regarding safety?

 

[Moonhorse]

Usually you need the specific antivirus regarding to browser you use

They just isolate browser, so so called safe banking is done

I really dont know anyone who uses these, if your pc is clean and you use any trusted browser you dont need safe browser ability for banking

 

[Mahesh Sudula]

Of the above Kaspersky, Bitdefender use their own browser for Banking purposes..it is just a virtualised hardened browser that works quite well even if your default browsers are hijacked(INFECTED) at that time. F secure struggles a lot in this aspect.
G DATA monitors the browsers 24/7 including the DLL injection and prevents the attacks silently giving the USER an acknowledgement that malicious traffic has been observed and infected part has been replaced. Eset works in the similar manner
However neither of the AV's i saw removed the Banking Trojan completely once the system/browser is compromised>> I installed these AV after
getting my browser infected (likely) to test how far their removal rate would be..as expected it is DISMAL!!)

 

[Deleted member 178]

secure banking = dedicated VM

 

[Deleted Member 3a5v73x]

secure banking = dedicated VM

Serious one, do you pay for your bills/taxes also using a VM?

 

[Libera Milanesi]

Technically, a safe browser from some security solutions relies on the same underlying technology as a dedicated Virtual Machine. Some vendors just monitor the standard browser the customer is using for Remote Code Execution attacks and other forms of tampering.

Not all of the vendors support a virtualization-approach safe browser and some that do lack in areas like keeping the browser engine up-to-date (e.g. Chromium version - I've seen Avast lack behind once or twice at-least).

 

[509322]

Of the above Kaspersky, Bitdefender use their own browser for Banking purposes..it is just a virtualised hardened browser that works quite well even if your default browsers are hijacked(INFECTED) at that time. F secure struggles a lot in this aspect.
G DATA monitors the browsers 24/7 including the DLL injection and prevents the attacks silently giving the USER an acknowledgement that malicious traffic has been observed and infected part has been replaced. Eset works in the similar manner
However neither of the AV's i saw removed the Banking Trojan completely once the system/browser is compromised>> I installed these AV after
getting my browser infected (likely) to test how far their removal rate would be..as expected it is DISMAL!!)

Kaspersky uses hardened Internet Explorer.

 

[Deleted member 178]

Serious one, do you pay for your bills/taxes also using a VM?

yep

 

[Atlas147]

Would a secured VM or one of the AV's "banking mode" protect you even if your computer is already infected with a trojan or malware?

 

[Mahesh Sudula]

Would a secured VM or one of the AV's "banking mode" protect you even if your computer is already infected with a trojan or malware?

Not possible...
Since malicious injection to the browser dll takes place at the RAM level normally by hiding/ injecting through a trusted (malicious) sys process like svhost, conhost.exe, rundll32...many more..since VM shares the similar OS and Ram
Most of the part 99%it is useless..banking Trojans are highly sophiscated..

 

[Deleted member 178]

Not possible...
Since malicious injection to the browser dll takes place at the RAM level normally by hiding/ injecting through a trusted (malicious) sys process like svhost, conhost.exe, rundll32...many more..since VM shares the similar OS and Ram
Most of the part 99%it is useless..banking Trojans are highly sophiscated..

It is why you have applications with memory containment/protection.
The goal of using a VM is to load a clean environment everytime you do banking online.

 

[509322]

I made this video years ago with a test system to make a point that security does not fully work.

There are solutions that work great, but the usual excuses always apply as to why people will not use them. The user doesn't know, the user doesn't want to know, the user wants to install a soft and be fully reliant upon it to protect the system, the user doesn't want to have to make a decision, such solutions are too much work, too inconvenient, blah, blah, blah.

Until the attitudes, expectations and knowledge of users changes, nothing will change. Software cannot solve those problems. No matter what technology is used. No software, that people are willing to only pay $50 or less for, can definitively solve the malware issue on a fully automated basis. At least not to most peoples' expectations.

People essentially want near-perfect security, but aren't willing to do all of the things necessary to achieve it - let alone pay for it.

And Windows is Microsoft's baby. That makes them responsible. They created it. And what they created inherently has a host of security issues. Microsoft is responsible just like a parent is responsible for their child.