Antivirus Vendor Whitepapers
What better way to educate yourself about malicious code than to read the papers written by virus researchers charged with protecting against viruses?
Trusteer Rapport
Trusteer Rapport adds an important layer of security - when you access a designated site, Rapport kicks in to uber defense mode, preventing the local behaviors that can compromise your online security.
Trusteer Rapport adds an important layer of security - when you access a designated site, Rapport kicks in to uber defense mode, preventing the local behaviors that can compromise your online security.
Hacker Safe or False Sense of Security?
You may have seen the Hacker Safe logo on some of the websites you've visited. The presence of the logo is intended to increase consumer confidence; the premise is that the site has been checked for remotely compromisable vulnerabilities. Unfortunately, groups such as sla.ckers have repeatedly succeeded in finding vulnerabilities on sites emblazoned with the Hacker Safe logo.
You may have seen the Hacker Safe logo on some of the websites you've visited. The presence of the logo is intended to increase consumer confidence; the premise is that the site has been checked for remotely compromisable vulnerabilities. Unfortunately, groups such as sla.ckers have repeatedly succeeded in finding vulnerabilities on sites emblazoned with the Hacker Safe logo.
The Spyware Battle -- Privacy vs. Profits
Trend Micro provides some insights into the spyware problem and how to minimize the risk of infection. This includes sound advice on safe Internet practices, to avoid many of the most common spyware "traps".
Trend Micro provides some insights into the spyware problem and how to minimize the risk of infection. This includes sound advice on safe Internet practices, to avoid many of the most common spyware "traps".
A Reflection on the Year 2000
From Kaspersky Labs, an excellent overview of virus happenings in the year 2000. This report even examines the increase in Linux viruses.
From Kaspersky Labs, an excellent overview of virus happenings in the year 2000. This report even examines the increase in Linux viruses.
The Evolution of Malicious IRC Bots
John Canavan, Symantec Security Response, examines the core features of popular IRC bots and tracks their evolution from a single code base. Presented at the 2005 Virus Bulletin conference.
John Canavan, Symantec Security Response, examines the core features of popular IRC bots and tracks their evolution from a single code base. Presented at the 2005 Virus Bulletin conference.
User-Driven Anti-Virus Approved?
Putting the onus for protection squarely on the user, Sophos discusses what should, and should not, be done to protect against virus infection.
Putting the onus for protection squarely on the user, Sophos discusses what should, and should not, be done to protect against virus infection.
Techniques of Adware and Spyware
Eric Chien, Symantec Security Response, discusses adware and spyware programs that are typically used to facilitate advertising or gather data for market research. Presented at the 2005 Virus Bulletin conference.
Eric Chien, Symantec Security Response, discusses adware and spyware programs that are typically used to facilitate advertising or gather data for market research. Presented at the 2005 Virus Bulletin conference.
Protecting your network against email threats
This paper addresses the how-to of blocking email attacks and viruses, and also provides a useful online tool to find out if your email protection is up to par.
This paper addresses the how-to of blocking email attacks and viruses, and also provides a useful online tool to find out if your email protection is up to par.
The Future of Bot Worms
This document details the possible new additions and modifications that bot authors might incorporate in the very near future.
This document details the possible new additions and modifications that bot authors might incorporate in the very near future.
Attacks on Win32 - Part II
Péter Ször of Symantec takes an updated look at the problems with Win32 infectors, and includes an historical perspective based on the original paper published in 1998.
Péter Ször of Symantec takes an updated look at the problems with Win32 infectors, and includes an historical perspective based on the original paper published in 1998.
The Sasser Event: History and Implications
This White paper is not an exhaustive technical guide on how SASSER operates and how to deal with it. Rather, it presents the said malware family as an event that has a unique context. Hence, this study is primarily concerned with SASSER’s behavior in relation to other chronological events and other malware families.
This White paper is not an exhaustive technical guide on how SASSER operates and how to deal with it. Rather, it presents the said malware family as an event that has a unique context. Hence, this study is primarily concerned with SASSER’s behavior in relation to other chronological events and other malware families.
An Analysis of the Slapper Worm Exploit
Frédéric Perriot and Peter Szor, Symantec Security Response, examine the Linux Slapper worm, which successfully exploited a buffer overrun in OpenSSL in 2002.
Frédéric Perriot and Peter Szor, Symantec Security Response, examine the Linux Slapper worm, which successfully exploited a buffer overrun in OpenSSL in 2002.
Protecting Your Network Against Email Threats
The goal of this white paper is to provide useful background information on email security issues, helping you examine the security threats facing your corporate email system and determine what kind of email security solution is needed.
The goal of this white paper is to provide useful background information on email security issues, helping you examine the security threats facing your corporate email system and determine what kind of email security solution is needed.
Why You Need an Email Exploit Detection Engine
GFI explains what an email exploit is and how an email exploit detection engine compares to traditional anti virus software.
GFI explains what an email exploit is and how an email exploit detection engine compares to traditional anti virus software.