Thanks Cowpipe ! Are most browsers safe from this now?Both actually, but traditionally a Drive By Download will exploit a vulnerability in your browser in order to either download in the background (and then execute or run without you clicking it) or in the case of some you'll see a box pop up that looks like Windows Update or something (but really this is just a fake).
A good example, a few years ago there was a surge in drive by downloads which exploited the way in which pictures are displayed, so you would just view a picture on a website and that's it, it would 'open' and you'd have a black box pop up suddenly with the name of something.exe and that would be the start of your infection.
Some older drive by downloads required you to accept a notification before the exploit could run, but on the whole a drive by download is an event in which you visit a website, only to have a malicious executable file download and run without your consent. (most common symptoms include the java icon (orange icon) popping up in the corner when you visit a site and also the browser crashing). I always do a hard disconnect on both of those events if I'm suspicious of the site (pull the ethernet cable out, or switch the wireless off, or turn the router off all together).
Yes and no, the vulnerabilities are mostly in things like Flash Player and Java. Chrome is the safest browser of the big three (IE, FF, CR), but you're not a hundred percent safe. As nearly all of these attacks that are in the wild come from so called "exploit kits" (that's a piece of software written, containing many different exploits for all different browsers, a malware hoster buys the software, puts it on their server and it turns into a drive by download heaven).. <- These all share identifiable code, for example you can tell what brand your car is by the badge, and if you removed the badge and rebranded it, you could still tell what brand it was (originally) by the shape, if that makes sense.Thanks Cowpipe ! Are most browsers safe from this now?
some can & some can't, depends on their detection. it's better not to rely on AV , just use some precaution -Thank You Koroke San ! Do most AV's block this?
Don't forget a clean system backup will work tooI have forgotten:
Some exploits cost more than 8,000$ and NOTHING can prevent you from this, maybe only Comodo with the browser in sandbox if the trojan has nothing to bypass that.
Also, some websites ads contain this exploits.
Very few online games use Java, in actual fact most use Flash but if you want to be safe and disable Java without interrupting your son's gaming there is a middle ground. In Chrome if you go to the menu button (three horizontal lines, top right corner) and to settings > Advanced Settings > Content Settings, scroll down to Plugins and select the middle option "Click To Play".Isn't Java needed for some gaming sites? My son is a gamer.