Antivirus News Security

A closer analysis of DE-Cleaner from Symantec

I was curious about how the DE-Cleaner of Symantec works, so I downloaded the software and give it a closer look. I did not dissemble it or anything similar… I simply performed a little black box testing. So, I started it without any internet connection. The result was: no scanning was possible. DE-Cleaner requires an […]

News Spam & Phishing

Sometimes it is good to know the Romanian language

Just stumbled upon this blog post from Symantec http://www.symantec.com/connect/blogs/spammers-introduce-new-email-internet-headers where an absolutely normal spam process is described. Unfortunately for the author who clearly doesn’t understand Romania, he copied/pasted all headers, even those which he doesn’t understand. So, he copied all kind of bad words, things which you usually wouldn’t publish in a serious blog. I […]

General

Viruses and Digital Signatures

Very interesting stuff: http://www.symantec.com/connect/blogs/viruses-and-digital-signatures Although the files are signed, they are signed using an unauthenticated CA (Certificate Authority) which is masquerading as Verisign. A CA is a trusted third party that issues and signs the certificate and vouches for the authenticity of the file. Each CA should be registered and therefore recognized globally as a […]