Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[renluop]

I picked this up from the Plusnet Forum.

[kitz]

Wonder what the exploit is, for obvious reasons the info is vague, it could perhaps suggest that some sort of targeted injection could occur during updates.

I use malwarebytes in the past but more as a free tool to search for difficult to remove trojans on an  already infected machine.   Wasnt aware that they also did AV.

[renluop]

I wondered if some terms were being used "loosely". If they had an AV suite, wouldn't they be offering it at least to registered clients?

[kitz]

I wondered if some terms were being used "loosely". If they had an AV suite, wouldn't they be offering it at least to registered clients?

Yep, youre likely correct.

I havent checked, but doesnt their premium malwarebytes offer real time protection against malware & spyware.   If so then that would probably connect every so often to check and automatically download new files.

From what I did gather, it seems that much of the problem is updates not being signed.  It said it had to be a targetted attack rather than general, so thats why Im guessing some sort of injection during an update, which could change the ACL/privileges and allow trojans to be installed undetected.

[renluop]

Indeed it does.

[renluop]

Glancing through the   Malwarebytes blog, my quick impression is that the Consumer edition has the problem, but that users of premium get some protection by enabling self protection in settings.

Somewhat surprised that according to initial words of blog, something was known in early November.