And find out what we have planned for 2001! Daily Anti-Virus Database Updates Firewalls Must Also Be Protected Script Checker: Combating Script Viruses The Year of E-mail Gateways Kaspersky

Guidelines for Enterprise Wide Linux Security Predictions regarding a world epidemic of Linux-viruses have come true in the first quarter of 2001. The latest incidents caused by the Ramen Internet-worm and its numerous modifications, as well as the multi-platform virus Pelf (Lindose) and other…

See the original post here:
Linux-Viruses: An Unpleasant Surprise or a Forecast That Came True?

A breach in a system’s safety is not the biggest threat of RTF files RTF (Rich Text Format), as presented to many users, is considered to be a so-called universal remedy against obtrusive macro-viruses and any other sort of malicious code. Numerous anti-virus companies categorically recommend not…

View original post here:
The Deceptive Safety of RTF Files

WINDOWS VIRUSES Win32.Devir NETWORK WORMS Worm.Cheese Worm.Sadmind Worm.SadMind.b Worm.SadMind.c I-Worm.HappyTime I-Worm.Moncher I-Worm.Puron I-Worm.Hydra I-Worm.Mari WINDOWS VIRUSES Win32.Devir This is a per-process memory resident parasitic poly-morphic Win32-virus. The virus infects PE EXE files…

Read more here:
Kaspersky Lab Int. Newsletter

The latest about computer viruses could be at your Web-site visitors’ finger-tips Do you want to “unveil” your Web site and attract the most visitors as possible? The best way of achieving this is to make your site interesting, and what interests visitors the most nowadays is the problem of computer…

See the article here:
Web Master, Have You Installed Kaspersky VirusInformer?

Even visiting security-oriented websites can sometimes be

Today, the server is the heart of every modern corporate network. All of a company’s important information is stored here, and the effective operation of the company depends on this information’s security. In addition to this, the mass spreading of viruses on local networks begins mostly from the…

Link:
Reliable Novell NetWare Server Defense with the Help of Kaspersky® Anti-Virus

Kaspersky Labs announces the release of the latest “Kaspersky Reports” Kaspersky Labs is pleased to announce the release of the latest “Kaspersky Reports,” informing our readers and users of the latest viruses in our Virus Encyclopedia. The following is a content list, and by clicking on the name of…

See the rest here:
The Latest Kaspersky Reports (#24)

With countless smartphones, tablets and other gadgets having appeared under Christmas trees, now is a good time for their new owners to think about what happens if they were to lose their new gadgets and how to protect the data they store on their devices.

AVG’s latest research* called Lost in Transit gives some helpful pointers as to what happens to gadgets and devices once they have been lost or stolen.

Our research, carried out by Research Now, questioned 5,000 people in 11 countries and looks at how people lose their gadgets. It reveals that smartphone theft is more frequently opportunistic, with thieves taking the phones while owners aren’t paying attention.

But when a thief does get their hands on your smartphone they are most likely to simply sell it on.

The story for tablets however is different. Unlike smartphones, tablets are still relatively new and have a novelty factor that phones don’t.

As a result, if someone gets their hands on your tablet the chances of them having a good look through it, accessing your data and using it is 28%, compared with just 9% for smartphones and 13% for laptops.

Once thieves do start accessing the data on your device, the consequences can be unpleasant.

Our research shows that in four in 10 (41%) cases where the data on a device was used against the owner, personal information was accessed.

In over one in three (36%) instances, bank details were stolen, while 37% had their passwords stolen.

Most worryingly, if they are able to, a lot of thieves will even post from your social media profiles. Where the thieves accessed and used the data, 39% of victims fell victim to social media status-jacking.

Does this situation seem familiar? I have just downloaded an awesome application which should contain thousands of new desktop pictures. The site name is www.bestsoftwareforever.com and wow, it must be pretty good. So, I run it and then this avast! AutoSandbox popup appears. Oh guys, why are you annoying me? I know what I am doing.

In few seconds, the AutoSandbox scan ends and another message appears: “This file appears to be malware”. Oh @$#%%, what is this application about? Probably it is a fake application which would harm my private data stored on the hard drive. Luckily, avast! and the AutoSandbox feature saved me this time.

The scope of behavior for AutoSandbox has been expanded for the new avast! 7.
The new AutoSandbox is now able to scan and analyze the behavior of selected files. In addition, this feature is connected to the FileRep cloud feature which identifies new files for additional analysis. So now we are able to warn you even before we have had the opportunity to examine this malware in our Virus Lab. This is a marked difference from the previous avast! 6 which was limited to only sandboxing suspicious files.
It also happens that the AutoSandbox toaster appears for programs which you are pretty sure are not infected. And in many cases, this can be intensely irritating: especially if you are a vendor of the application and you don’t want it to be marked as a potentially harmful program. In avast! 7, there is a new option to disable AutoSandbox. This might be useful for software developers when, for example, their internal application builds are being AutoSandboxed as low-reputation files.

Several reasons why we activate the AutoSandbox:

• Static analysis finds the file suspicious

Static analyses checks file content and looks for suspicious strings in file headers similar in virus definitions. Main static analysis reasons are:

• Application is not signed

It’s not mandatory to have a signed application, but signed software is statistically less likely to be harmful.

• Use of executable file encryption/compression

App writers and installers(self extracts) like executable compression/encryption because it makes reverse engineering more difficult. But, it is also used by malware to hide from antivirus scanners. A compressed/encrypted file without a digital signature is doubly suspect.

• The file prevalence/reputation is low

All new unknown files are potentially dangerous. Whenever they have become widespread, there will not be a reason to AutoSandbox them anymore.

• The file origin/source is suspicious

Freewebs and some file distribution servers have a reputation for paying less attention to the quality and origin of their software than official distribution servers. This is a long-run issue of reputation and income management.

• The file is executed from a remote/removable media

Running an application from the USB drive may cause the AutoSandbox dialogue box to appear –but the same app from your local hard drive may not. That is because many harmful apps are spread through removable media, increasing the odds of potential danger.

• Generic heuristics/suspicious context
• Invalid digital signatures
• Suspicious file names

• And there are more…

The guiding principle is that we secure your computer not only from known viruses/malware but also from viruses/malware which have not yet been uncovered.
So, the next time if you see an AutoSandbox popup appearing for your new application, read the message carefully. If you are not sure, run the app first in the AutoSandbox to prevent potential damage.

Original post:
AutoSandbox – why are you annoying me?