Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Software Troubleshooting
Build Security around ReHIPS 2.3 on a System?
Message
<blockquote data-quote="Andy Ful" data-source="post: 708171" data-attributes="member: 32260"><p><strong>So, it is quite secure even when the Internet connection is not blocked.</strong></p><p>There are still some possibilities to spy when:</p><ol> <li data-xf-list-type="ol">The malicious document is opened when the Confidential private document was not closed or was saved into Documents folder (and redirected to ReHips User profile). That can happen to the inexperienced user.</li> <li data-xf-list-type="ol">Malware in the sandbox will exploit the application (for example not supported by Microsoft - Office 2007), and then it will have the <span style="color: #00b359"><strong>read</strong></span> access to all user's documents.</li> <li data-xf-list-type="ol">Malware in the sandbox will scan the disk, read registry keys, .ini files, installed software, etc. to gather the information about the system.</li> </ol><p>The points 3. and 2. can be connected because the malware can gather information, and next the targetted exploit will be applied to MS Office 2007.<strong> I cannot say if the danger is real nowadays, but the malware evolves in that direction, so it may be real in the future.</strong></p><p>Anyway, I am impressed by anti-spying capabilities of ReHips sandbox.<img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /></p><p>.</p><p><strong><span style="color: #00b359">Post edited in green</span></strong>.</p></blockquote><p></p>
[QUOTE="Andy Ful, post: 708171, member: 32260"] [B]So, it is quite secure even when the Internet connection is not blocked.[/B] There are still some possibilities to spy when: [LIST=1] [*]The malicious document is opened when the Confidential private document was not closed or was saved into Documents folder (and redirected to ReHips User profile). That can happen to the inexperienced user. [*]Malware in the sandbox will exploit the application (for example not supported by Microsoft - Office 2007), and then it will have the [COLOR=#00b359][B]read[/B][/COLOR] access to all user's documents. [*]Malware in the sandbox will scan the disk, read registry keys, .ini files, installed software, etc. to gather the information about the system. [/LIST] The points 3. and 2. can be connected because the malware can gather information, and next the targetted exploit will be applied to MS Office 2007.[B] I cannot say if the danger is real nowadays, but the malware evolves in that direction, so it may be real in the future.[/B] Anyway, I am impressed by anti-spying capabilities of ReHips sandbox.:) . [B][COLOR=#00b359]Post edited in green[/COLOR][/B]. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
