Jump to content

New attack completely bypasses Microsoft zero-day protection app


anuseems

Recommended Posts

Whitehats' ability to sidestep EMET strongly suggest criminal hackers can, too.

From Ars Technica:

Researchers have developed attack code that completely bypasses Microsoft's zero-day prevention software, an impressive feat that suggests criminal hackers are able to do the same thing when exploiting vulnerabilities that allow them to surreptitiously install malware.

The exploit code, which was developed by researchers from security firm Bromium Labs, bypasses each of the many protections included in the freely available EMET, which is short for Enhanced Mitigation Experience Toolkit, according to a whitepaper published Monday. Microsoft has long held out EMET as an important tool for extending the security of Windows computers. The proof-of-concept exploit shows the limitations of those protections. The Bromium exploit included an example of a real-world attack that was able to circumvent techniques designed to mitigate the damage malicious code can do when targeting security bugs included in third-party applications.

http://arstechnica.com/security/2014/02/new-attack-completely-bypasses-microsoft-zero-day-protection-app/

Edited by anuseems
Link to comment
Share on other sites


  • Replies 1
  • Views 973
  • Created
  • Last Reply

Top Posters In This Topic

  • stylemessiah

    1

  • anuseems

    1

Popular Days

Top Posters In This Topic

Guess ill be the first to simply say: The above "story" and "exploit" assumes that people trust EMET in the first place....show me a sysadmin who's only protection is EMET......and that guy should be looking for a new job :)

So, yeah, time for real news anyone?

Link to comment
Share on other sites


  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...