Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Malware Analysis
Three Misconceptions Surrounding Firewalls
Message
<blockquote data-quote="upnorth" data-source="post: 506785" data-attributes="member: 38832"><p>Quote : " Everyone knows what a firewall is, right? Wrong…</p><p></p><p>Let’s take a real-life example; does your Mother actually know (or care) what a firewall is? Does your little sister really need a firewall to protect her from the world of online criminals? By clearing up three misconceptions about firewalls, we hope our less-experienced users will understand the place of firewalls in the modern arsenal of online protection options.</p><p></p><p><span style="font-size: 15px"><strong>Misconception 1: Firewall was a good movie(!)</strong></span></p><p>Whilst your Mother may have enjoyed handsome Harrison Ford’s appearance on the 2008 movie Firewall, it’s likely she will admit the film had a rather predictable plot. Sure, Firewall highlighted some of the threats in the online world, but I think you’ll agree that Firewall wasn’t an Oscar-nominating moment for Harrison Ford. Enough said.</p><p></p><p><strong><span style="font-size: 15px">Misconception 2: Firewalls protect your computer by detecting malware</span></strong></p><p>Firewalls can provide a false sense of security in the modern online world. Allow us to explain: The main purpose of a software firewall is to eliminate potential entry points attackers could use to get onto your computer. However, what if you put up the firewall when you already have malware active on your PC? You may think you’re protected, but you already have a malware infection and the firewall won’t make it go away.</p><p></p><p>This is because software firewalls are simply not designed to detect malware that is already active on your PC. Even with a firewall, malware could be actively communicating your data with a hacker on the other side of the world.</p><p></p><p>Also, common malware infection methods don’t require using any sort of brute-force methods of breaking into your computer. They infect using methods that a firewall can’t block in the first place, such as convincing the user to run an application that is other than what they think they’re getting.</p><p></p><p><span style="font-size: 15px"><strong>Misconception 3: Firewalls are always HIPS (host-based intrusion prevention systems)</strong></span></p><p>Not so long ago, all software firewall products did exactly what users expected them to do: Filter network data. Today, that’s still the classic definition of the term ‘firewall’; however, firewall technology was soon ‘developed to death’ (= no more space for innovation -> all vendors offering a similar level of quality). Therefore, vendors started to add new and often overkill features to their firewall products, such as monitoring of all sorts of operating system changes and detecting thousands of other ‘suspect’ things.</p><p></p><p>The major problem with these technologies is that for all their monitoring and detection capability they are relatively clumsy. They tend to raise an alert for each and every action that could possibly lead to an attack, but the truth is that about 99.9% of all such alerted actions are not malicious.</p><p></p><p>As mentioned earlier, such alerts are annoying and even dangerous because they can train users to click ‘Allow’, day in, day out. Eventually, the users’ well-intended and complacent clicking of ‘allow’ is likely to allow an intruder through the gate.</p><p></p><p>HIPS are therefore recommended for experts only, who can fully understand the large amount of alerts they produce and take advantage of the extra protection layer this can provide. "</p><p></p><p>Full Source : </p><p>[URL unfurl="true"]https://blog.emsisoft.com/en/22314/three-misconceptions-surrounding-firewalls/[/URL]</p></blockquote><p></p>
[QUOTE="upnorth, post: 506785, member: 38832"] Quote : " Everyone knows what a firewall is, right? Wrong… Let’s take a real-life example; does your Mother actually know (or care) what a firewall is? Does your little sister really need a firewall to protect her from the world of online criminals? By clearing up three misconceptions about firewalls, we hope our less-experienced users will understand the place of firewalls in the modern arsenal of online protection options. [SIZE=4][B]Misconception 1: Firewall was a good movie(!)[/B][/SIZE] Whilst your Mother may have enjoyed handsome Harrison Ford’s appearance on the 2008 movie Firewall, it’s likely she will admit the film had a rather predictable plot. Sure, Firewall highlighted some of the threats in the online world, but I think you’ll agree that Firewall wasn’t an Oscar-nominating moment for Harrison Ford. Enough said. [B][SIZE=4]Misconception 2: Firewalls protect your computer by detecting malware[/SIZE][/B] Firewalls can provide a false sense of security in the modern online world. Allow us to explain: The main purpose of a software firewall is to eliminate potential entry points attackers could use to get onto your computer. However, what if you put up the firewall when you already have malware active on your PC? You may think you’re protected, but you already have a malware infection and the firewall won’t make it go away. This is because software firewalls are simply not designed to detect malware that is already active on your PC. Even with a firewall, malware could be actively communicating your data with a hacker on the other side of the world. Also, common malware infection methods don’t require using any sort of brute-force methods of breaking into your computer. They infect using methods that a firewall can’t block in the first place, such as convincing the user to run an application that is other than what they think they’re getting. [SIZE=4][B]Misconception 3: Firewalls are always HIPS (host-based intrusion prevention systems)[/B][/SIZE] Not so long ago, all software firewall products did exactly what users expected them to do: Filter network data. Today, that’s still the classic definition of the term ‘firewall’; however, firewall technology was soon ‘developed to death’ (= no more space for innovation -> all vendors offering a similar level of quality). Therefore, vendors started to add new and often overkill features to their firewall products, such as monitoring of all sorts of operating system changes and detecting thousands of other ‘suspect’ things. The major problem with these technologies is that for all their monitoring and detection capability they are relatively clumsy. They tend to raise an alert for each and every action that could possibly lead to an attack, but the truth is that about 99.9% of all such alerted actions are not malicious. As mentioned earlier, such alerts are annoying and even dangerous because they can train users to click ‘Allow’, day in, day out. Eventually, the users’ well-intended and complacent clicking of ‘allow’ is likely to allow an intruder through the gate. HIPS are therefore recommended for experts only, who can fully understand the large amount of alerts they produce and take advantage of the extra protection layer this can provide. " Full Source : [URL unfurl="true"]https://blog.emsisoft.com/en/22314/three-misconceptions-surrounding-firewalls/[/URL] [/QUOTE]
Insert quotes…
Verification
Post reply
Top
