New exploit kit targets Chinese computers without 360 antivirus

[Piteko21]

Content source

http://blog.360totalsecurity.com/en/new-exploit-kit-targets-chinese-computers-without-360-antivirus/

A new exploit kit is now in the wild, targeting specific Chinese websites and users, as reported on Malwarebytes. Browsing any of the infected websites will trigger the attack to the target system. However, before executing the attack, this malware will look for the presence of 360 Total Security on the target computer. If the software is present, the exploit kit will not keep on with its payload; otherwise, this malware will continue its execution in any other computer not protected with 360 Total Security, thus putting those remaining vulnerable computers under risk.

Since the exploit kit’s main target is older computers, it is strongly recommended for users who have not yet upgraded to a new operating system, to download and update their antivirus program to the latest version.

Qihoo’s commitment has always been to secure computers against all kind of malware, and we will remain loyal to it, as our antivirus continues providing protection in China to 200 million Windows XP users.


by: http://blog.360totalsecurity.com/

 

[frogboy]

It could have been made by 360 Total Security to promote their product.

 

[Oxygen]

It could have been made by 360 Total Security to promote their product.

I was thinking the exact same thing when I saw this thread. Why on earth would someone make a exploit just because a certain antivirus isn't present? (It's a good tactic to scare basic knowledge people into using the antivirus)

Also it's funny how China still has so many XP users, I would think they would have been more advanced by now.

 

[Venustus]

A new exploit kit is now in the wild, targeting specific Chinese websites and users, as reported on Malwarebytes. Browsing any of the infected websites will trigger the attack to the target system. However, before executing the attack, this malware will look for the presence of 360 Total Security on the target computer. If the software is present, the exploit kit will not keep on with its payload; otherwise, this malware will continue its execution in any other computer not protected with 360 Total Security, thus putting those remaining vulnerable computers under risk.

Since the exploit kit’s main target is older computers, it is strongly recommended for users who have not yet upgraded to a new operating system, to download and update their antivirus program to the latest version.

Qihoo’s commitment has always been to secure computers against all kind of malware, and we will remain loyal to it, as our antivirus continues providing protection in China to 200 million Windows XP users.


by: http://blog.360totalsecurity.com/

Somehow I sense this as "damage control" on the part of Qihoo in light of recent unethical activities.. !!

 

[Piteko21]

It could have been made by 360 Total Security to promote their product.

also thought the same @frogboy

 

[Koroke San]

Looks like Qihoo 360 is behind it , chinese r very good at promo their AV, west should learn this tricks

 

[Kate_L]

It looks shady, really shady. I am a Tencent PC Manager user and I wonder, why only for Qihoo and not Baidu or Tencent ?

 

[Maxxx58]

That's why I don't trust Chinese AV

 

[jamescv7]

In such posting a blog for a relevant knowledge in computer security, there should be a proper decorum which its a neutral and unbiased. Its better to say that users who are running with 360 AV should be protected about that exploit so goes on other security software.

Not a new way for promoting however better provide their own analysis besides of giving a credit on other sources.

 

[Ink]

The 360 Total Security blog is for promotional purposes only. It's a joke site.

The real source comes from trusted blogs and vendors such as Malwarebytes, who originally posted their findings.

More about Exploit: https://blog.malwarebytes.org/exploits-2/2015/05/unusual-exploit-kit-targets-chinese-users-part-1/

 

[Viking]

I agree, it sounds like a scare tactic!

 

[aztony]

The exploit kit will not continue with its payload if it detects the user is running the Qihoo antivirus.

Hard to give Qihoo the benefit of the doubt given their past sordid practices, and more recent scandal. I would not be surprised if Qihoo is behind this with their 'win at any cost' mindset/culture.

 

[bunchuu]

smell fishy
I think Qihoo want to do anything after "av-lab" scandal

 

[comfortablynumb15]

I have high doubts the company made this..otherwise they are the most insanely suicidal company in web history. This is probably some joker having fun or a KISS-level of fanaticism fan group.