Virus Exchange (Poll)

Should access to the Virus Exchange be restricted?

  • Yes - Only to approved members (who possess a minimum level of competence)

    Votes: 15 45.5%

  • No - Keep it open to the public

    Votes: 11 33.3%

  • No - Simply go back to the old system with a disclaimer

    Votes: 7 21.2%
  • Total voters
    33
Status
Not open for further replies.
Chromatinfish 123

Chromatinfish 123

Level 21
Verified
May 26, 2014
1,051
Cowpipe said:
The problem is there are far too many people here who don't even care about the risks of running malware samples because they're running it in a virtual machine or with deep freeze or something. These are the exact same people who will be blissfully unaware that malware can break out of a virtual machine (how many people pay attention to which version they have installed), it can send details of your IP address back to remote servers etc. The same with deep freeze. So what, it restores your computer back to it's normal state, that doesn't stop your IP being sent out, it doesn't stop a hacker exploiting your webcam to take pictures of you without your consent, it doesn't stop copies of the files on your computer being sent to a server. Just because you're using sandboxie, doesn't mean you're safe...I could continue.

Perhaps we should have a gun section, so people can just click the link that says "Shoot Myself".
Click to expand...
Doesn't the virtual machine still use your physical hard drive? So malware could still wipe it out and access other files on your drive, including the main OS?
 
Cats-4_Owners-2

Cats-4_Owners-2

Level 39
Verified
Honorary Member
Top Poster
Well-known
Dec 4, 2013
2,800
Perhaps the sensible suggestions spoken of earlier should simply be incorporated in wording the disclaimers to make them even more:eek: scary!! They could read: "Beware!!! What you are about to do may leave you neither recourse nor a path for retreat if you do not turn back now, and choose to stay your present course, better say your prays, activate the sandbox, or Enter into Shadow Mode", thus allowing one's self to yell defiantly: "My shields are up & I have my Virtual Machine image" (I don't know how to use yet):oops:"..but :mad: Damn all the Photon Topedos anyway!!!!";):p
Chromatinfish 123 said:
Doesn't the virtual machine still use your physical hard drive? So malware could still wipe it out and access other files on your drive, including the main OS?
Click to expand...
I believe the VM is like sandboxie or Shadow Defender, and partitions the virtual (duplicated image) testing away from your real system.;) I think.:rolleyes:
 
Last edited:
  • Like
Reactions: Chromatinfish 123 and Cowpipe
Cowpipe

Cowpipe

Level 16
Thread author
Verified
Well-known
Jun 16, 2014
781
Chromatinfish 123 said:
Doesn't the virtual machine still use your physical hard drive? So malware could still wipe it out and access other files on your drive, including the main OS?
Click to expand...

The hard drive on a virtual machine is basically just a file, like a container. So if the virus in a virtual machine wipes the drive, you basically just end up with a virtual machine with an empty hard drive, no harm to the host computer done.

Code: 
Before virus formats the HDD:
______________
|                   |
|  hard-drive  |
|     ______    |
|    |  VM  |   |
|    | HD:  |   |
|    | files |   |
|    |_____|   |
| l33t files    |
|___________|

After virus formats the HDD:

______________
|                   |
|  hard-drive  |
|     ______    |
|    |  VM  |   |
|    | HD:  |   |
|    |        |   |
|    |_____|   |
| l33t files    |
|___________|
Stupid formatting :mad::mad: You get the idea.
 
  • Like
Reactions: Chromatinfish 123 and Malware1
Cowpipe

Cowpipe

Level 16
Thread author
Verified
Well-known
Jun 16, 2014
781
OpenSecLabs said:
So ... what is the final result ?
Click to expand...

There is no final result, Jack has the final say of what happens. I was simply interested in people's opinions and it seems opinion is split pretty much down the middle ;) It's always good to have a discussion about these kind of things, and I think it's raised some good issues
 
  • Like
Reactions: Chromatinfish 123
Jaspion

Jaspion

Level 17
Verified
Jun 5, 2013
841
The thing about testing with VM or Sandboxie, etc, not being safe because the malware will be able to read your files, send them, or at least your IP and some other info, take pictures, etc, is a very valid point, and I don't think everyone realizes this.

This is the kind of thing that should be in the disclaimer.

But the openness of this forum is what makes it great. We can change that (Jack can, actually), but that would change MT too, and maybe not in a good way.
 
  • Like
Reactions: Malware1 and Cowpipe
Status
Not open for further replies.

Similar threads

Trident
    • Like
    • Applause
    • +Reputation
  • Poll
Serious Discussion Pre-execution vs post-execution protections explained
Replies
6
Views
1,070
General Security Discussions
Trident
Trident
Gandalf_The_Grey
    • Like
    • +Reputation
Technology Say goodbye to passkey lock-in: FIDO's new specs enable secure transfers
Replies
0
Views
227
Technology News
Gandalf_The_Grey
Gandalf_The_Grey
Shadowra
    • Like
    • +Reputation
    • Wow
App Review MeyeProtect Antivirus 2024
Replies
2
Views
664
Video Reviews - Security and Privacy
Seandc33
S

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top