Bubba1
Less is More
Premium
join:2006-09-21
| reply to EGeezer
Re: Trend Micro Hacked - Serving Malicious Iframes
said by EGeezer  :This goes to demonstrate that "trusted sites" can still serve up malware. Frustrating. I operate a locked-down IE7 .. greatly utilizing the trusted/NOT scheme.
Presently, should KIS7's web protection component fail to detect a trusted(s) compromise .. there is no second line.
--
"Fast is fine, but accuracy is everything" --Wyatt Earp |
|
EGeezer
Summer is passing
Premium
join:2002-08-04
Country!
 ·RoadRunner Cable
 ·AT&T CallVantage
| The infection of legitimate and normally trusted websites also brings mitigation and recovery to the forefront. If one assumes that at some point they may be breached, then they can start putting together a response and recovery plan. One example is a mini-TTX where we "pretend" that our PC has been hacked, corrupted, logins stolen, ID and CC info captured etc. and our recent available backups may be suspect. From that point, practice or develop a response and document as needed.
Although this PPT relates to school and organizational training, many of the tips for planning and doing the exercise are applicable.
--
Mayors of New York come from nowhere and go nowhere.
Wallace Sayre (apparently, so do governors... ) |
|
webscanner
@web123.com
| reply to Bubba1
said by Bubba1 :Frustrating. I operate a locked-down IE7 .. greatly utilizing the trusted/NOT scheme. Presently, should KIS7's web protection component fail to detect a trusted(s) compromise .. there is no second line. Does the web scanner of *any* antivirus program really offer any needed protection?
If the antivirus program is going to catch the threat, would it not catch it just as well without the use of a web scanner?
I have often wondered if including a web scanner in an antivirus program was more marketing hype than truly being useful. Am I wrong? |
|
