HitmanPro Alert HitmanPro.Alert 3 release expected soon

[Ponting]

HitmanPro.Alert version 3 stops exploit attacks from cybercriminals and (foreign nation-state) hackers

Hengelo, The Netherlands, February 19, 2014 – SurfRight, a developer of tools that give users more control over their PC security, today announced HitmanPro.Alert version 3: a real-time security solution that stops attacks on software vulnerabilities by cybercriminals and hackers. Previous versions of HitmanPro.Alert already offered real-time intrusion detection, which informs users when their computer is compromised by common and unknown man-in-the-browser malware, like botnet and banking trojans.
Version 3 is a major update that introduces exploit mitigation and anti-espionage technologies. HitmanPro.Alert 3 stops exploit attacks that abuse known and unknown weaknesses in widely used software, like web browsers, plug-ins, Java and Office applications. Vulnerabilities in current or outdated software can no longer be abused to silently install unsolicited software or malware.

Almost every PC user assumes their computer is safe from attacks because it is protected by antivirus and firewall software. But attackers compromise popular websites to silently serve malicious content that exploit software weaknesses on computers of unaware visitors. Simply visiting the website is enough to get infected with malware, even when protected by up-to-date antivirus software. In so-called exploit kits, attackers often combine multiple exploits to attack several vulnerabilities at once and infect as many victims as possible to maximize success. As a result, every day hundreds of thousands of these systems fall prey to cybercriminals and are infected with malicious software like (banking) trojans and police-themed ransomware.

HitmanPro.Alert version 3 is not only suited for home users. It also offers protection for corporate computers that are also specifically targeted by (foreign nation-state) hackers with custom made exploits and malware, that are unknown to antivirus databases and network-based intrusion detection systems. Malware-authors employ many techniques, including obfuscation, to evade detection by antivirus software. But key success factor of these attacks is actually the stealthy delivery method: by exploiting vulnerable software.

The exploit mitigation technologies in HitmanPro.Alert focus on the attack technology that attempt to deliver malware. Without affecting normal computer use, HitmanPro.Alert automatically strengthens the security posture of applications and stops the execution of typical processor instruction sequences required for exploits to run arbitrary code. Consequently, users do not need to wait for software vendors to patch vulnerable software as HitmanPro.Alert stops current and future exploit attempts incorporated in wide-spread and custom made malware that would otherwise be transferred or installed on the attacked computer.

HitmanPro.Alert is capable of per-application enforcement of DEP and ASLR memory protections – even on outdated Windows XP, which will soon no longer receive security updates from Microsoft. In addition, HitmanPro.Alert keeps an eye on program execution flow, prevents heap-sprays and stops attacks that e.g. redirect exception handling to run malicious code. With full support for 64-bit applications, it also blocks sophisticated return-oriented programming (ROP) attacks, which are designed to bypass memory protections.

“Many business environments are bound to run outdated software, including Java-based company applications. This leaves these networks extremely vulnerable to attacks” says Mark Loman, CEO of SurfRight. Mark Loman continues: “The new universal exploit mitigation technology works in real-time and does not rely on signatures or the cloud. Without requiring prior knowledge of the abused weakness or the malicious program, it blocks exploit attacks on unknown and unpatched vulnerabilities in common applications, including Internet Explorer, Flash, Acrobat and Java.”

Also, attackers increasingly employ social engineering schemes to persuade computer users (of any age) into running a malicious file, thereby infecting their own machine. Once active, (banking) malware and most remote access trojans can secretly record everything typed on the keyboard or access the webcam for extortion or spying. The new anti-espionage features in HitmanPro.Alert keeps sensitive information safe by encrypting keystrokes at the operating system kernel level. In addition, it will alert computer users when the webcam is (secretly) accessed for remote spying.

Security enthusiasts and IT professionals are invited to come to booth #2503 at the RSA Conference USA, February 24-28, 2014, at the Moscone Center in San Francisco (CA), where we will reveal the new product for the first time and show its effectiveness using both real-world exploits and a soon to-be-released HitmanPro Exploit Test tool. The easy-to-use HitmanPro.Alert software is designed for IT professionals as well as home users, and runs on 32-bit and 64-bit versions of Windows XP, Windows Vista, Windows 7, Windows 8 and Windows 8.1, as well as Windows Server 2003, Windows Server 2008 (R2) and Windows Server 2012 (R2).

Download link for HMP Alert 3 Datasheet: http://dl.surfright.nl/Alert-3/HitmanPro-Alert-3-Datasheet.pdf

Screenshots:

HitmanPro.Alert 3 Main User Interface


HitmanPro.Alert 3 Exploit Mitigation Settings


HitmanPro.Alert 3 Security Settings


HitmanPro.Alert 3 intercepted an exploit attack


HitmanPro.Alert 3 revealing the technical details of a 64-bit ROP attack


HitmanPro.Alert 3 revealing the technical details of a heap-spray


HitmanPro.Alert 3 warning the user that the webcam is silently accessed

Source:http://www.surfright.nl/en/home/press/surfright-announces-alert-3 Edited February 19, 2014 by NSFfan

[Ponting]