Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
What would happen if a legimate program, OS, or game somehow had a virus or malware installed on it from the official source?
Message
<blockquote data-quote="RoboMan" data-source="post: 948933" data-attributes="member: 53544"><p>To start with, that would be <strong>extremely rare.</strong> Possible, yes, but rare. There have only been a few cases in... what, decades?</p><p></p><p>In order for this ro happen the "trustworthy company" must have been firstly infected, meaning all security measures were beaten, and we're talking corporations-like security.</p><p></p><p>Given the case, in a scenario where it happened and they were infected, cybercriminals must have taken control over the host where this company sends their software releases/updates, in order for you to get an update on the installed software. Also, they must correctly sign it with the company's certificate in order to not elevate any suspicious looks. Let's set an example that they took an RC copy of a build and just modified it to make it easier.</p><p></p><p>What would happen next? If the modified copy isn't ridiculous, chances are it won't be detected by almost any antivirus or solution, not even default-deny solutions that work with a trusted vendors list. Within time, two things may occur:</p><ul> <li data-xf-list-type="ul">Some lab, user, or company, maybe the trustworthy company themselves detected anomalies and decided to investigate, realizing what occured</li> <li data-xf-list-type="ul">Some bad coding or greed uncovered the operation, like a stupid loop for a callback home, like Ccleaner case, and trigger an antivirus</li> </ul><p>Chances of this even happening are low, but best you can do it stay protected, protect your personal data with encrypted volumes like VeraCrypt, and always have a recent OS Image and Files Backup ready.</p></blockquote><p></p>
[QUOTE="RoboMan, post: 948933, member: 53544"] To start with, that would be [B]extremely rare.[/B] Possible, yes, but rare. There have only been a few cases in... what, decades? In order for this ro happen the "trustworthy company" must have been firstly infected, meaning all security measures were beaten, and we're talking corporations-like security. Given the case, in a scenario where it happened and they were infected, cybercriminals must have taken control over the host where this company sends their software releases/updates, in order for you to get an update on the installed software. Also, they must correctly sign it with the company's certificate in order to not elevate any suspicious looks. Let's set an example that they took an RC copy of a build and just modified it to make it easier. What would happen next? If the modified copy isn't ridiculous, chances are it won't be detected by almost any antivirus or solution, not even default-deny solutions that work with a trusted vendors list. Within time, two things may occur: [LIST] [*]Some lab, user, or company, maybe the trustworthy company themselves detected anomalies and decided to investigate, realizing what occured [*]Some bad coding or greed uncovered the operation, like a stupid loop for a callback home, like Ccleaner case, and trigger an antivirus [/LIST] Chances of this even happening are low, but best you can do it stay protected, protect your personal data with encrypted volumes like VeraCrypt, and always have a recent OS Image and Files Backup ready. [/QUOTE]
Insert quotes…
Verification
Post reply
Top