Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
VoodooShield
VoodooShield CyberLock 7.0
Message
<blockquote data-quote="simmerskool" data-source="post: 1070677" data-attributes="member: 61091"><p>[USER=62850]@danb[/USER] Security researchers have detailed a new variant of a dynamic link library (DLL) search order hijacking technique that could be used by threat actors to bypass security mechanisms and achieve execution of malicious code on systems running Microsoft Windows 10 and Windows 11. The approach "leverages executables commonly found in the trusted WinSxS folder and exploits them via the classic DLL search order hijacking technique," cybersecurity firm Security Joes said in a new report exclusively shared with The Hacker News.</p><p></p><p>[URL unfurl="true"]https://thehackernews.com/2024/01/new-variant-of-dll-search-order.html[/URL]</p><p></p><p>the above DLL warning was posted in another thread, but wonder if VS/CL protects against this threat? <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite132" alt=":unsure:" title="Unsure :unsure:" loading="lazy" data-shortname=":unsure:" /></p><p></p><p></p><p>curious on win10 hardware pc, using Edge with Malwarebytes Browser Guard it just blocked this download! with memo 2.6.17 |Heuristics: a suspicious download.</p><p>but I also downloaded 7.68 on VM with Edge with Malwarebytes Browser Guard and it was not blocked.</p><p>EDIT update, but on 2d try same Edge, this time 7.68 downloaded aok.</p><p>anomaly day 2024... (and it's only day 002 <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite119" alt=":rolleyes:" title="Roll eyes :rolleyes:" loading="lazy" data-shortname=":rolleyes:" />)</p><p></p><p>Installed 7.68 on hardware win10, CL Sandbox feature working as expected with Thunderbird... <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite116" alt=":D" title="Big grin :D" loading="lazy" data-shortname=":D" /></p><p>and I have the Sandbox disabled on my VMware win10_VM, as it does not "recognize" the virtualization. Dan mentioned it might work to create a nested sandbox with the right tweaks. Not necessary, just wondering if anyone knows how to do this... <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite132" alt=":unsure:" title="Unsure :unsure:" loading="lazy" data-shortname=":unsure:" /></p></blockquote><p></p>
[QUOTE="simmerskool, post: 1070677, member: 61091"] [USER=62850]@danb[/USER] Security researchers have detailed a new variant of a dynamic link library (DLL) search order hijacking technique that could be used by threat actors to bypass security mechanisms and achieve execution of malicious code on systems running Microsoft Windows 10 and Windows 11. The approach "leverages executables commonly found in the trusted WinSxS folder and exploits them via the classic DLL search order hijacking technique," cybersecurity firm Security Joes said in a new report exclusively shared with The Hacker News. [URL unfurl="true"]https://thehackernews.com/2024/01/new-variant-of-dll-search-order.html[/URL] the above DLL warning was posted in another thread, but wonder if VS/CL protects against this threat? :unsure: curious on win10 hardware pc, using Edge with Malwarebytes Browser Guard it just blocked this download! with memo 2.6.17 |Heuristics: a suspicious download. but I also downloaded 7.68 on VM with Edge with Malwarebytes Browser Guard and it was not blocked. EDIT update, but on 2d try same Edge, this time 7.68 downloaded aok. anomaly day 2024... (and it's only day 002 :rolleyes:) Installed 7.68 on hardware win10, CL Sandbox feature working as expected with Thunderbird... :D and I have the Sandbox disabled on my VMware win10_VM, as it does not "recognize" the virtualization. Dan mentioned it might work to create a nested sandbox with the right tweaks. Not necessary, just wondering if anyone knows how to do this... :unsure: [/QUOTE]
Insert quotes…
Verification
Post reply
Top
