Mamutu 3.0 – 1 year subscription for free (GOTD)
July 14, 2011 by admin
Filed under Protection Tools
How safe is your PC really?
To put it succinctly: Why signature-based security software is not enough
Normal security software recognizes Malware using Signatures, a type of digital fingerprint. What is problem with this? No fingerprint means no recognition. This means that the Malware must first be known to the manufacturer of the security software before it is possible to create a fingerprint allowing it to be recognized. The fingerprint database on your PC is then updated online on a daily basis. Only then can the Malware be recognized.
You are probably now thinking: “What about new Malware that manufacturer of the security software has never seen? They have no way of making a fingerprint of this…”. Exactly!
This is where the behavior-based Malware defense of Mamutu comes into play. It does not use a fingerprint to recognize dangerous software but rather on the basis of the behavior of the software. This allows Mamutu to recognize new Malware long before the signature databases have been updated. These types of Malware attacks are known as Zero-Day attacks. In addition to this, behavior-based Malware recognition is the only efficient way of recognizing Malware that has been built for a single specific attack, e.g. for industrial espionage.
Mamutu – Protects against completely new pests in seconds!
The Mamutu Background Guard is clever. It recognizes and blocks all potentially dangerous programs before they can cause any damage. The new Malware Intrusion Detection System (Malware-IDS) is unique worldwide and immediately warns you when a program attempts to perform a potentially dangerous or suspicious operation.
Suggested reading: Signature recognition or behavioral analysis – Which is better?
The advantages to you:
New behavior-based protection technology
Mamutu permanently monitors all active programs on your PC. As soon as suspicious behavior of a process is detected you receive a warning message and can react accordingly. Block Malware before it can cause any damage, by using the unique Emsisoft behavior analysis technology that has been tried and tested for years.
The Malware-IDS in detail
Lower resource consumption
Mamutu has been conceived to require the smallest possible amount of your computer power. This makes it ideal for users who require high computing performance, e.g. graphics or video applications and especially games.
Quarantine in case of emergency
Always place a suspicious program in quarantine before finally deleting it. Suspicious behavior can also be exhibited by usually benign applications. Mamutu helps you to decide what do do with a suspicious program.
Stay protected – it is easier than you think
Regardless of whether you are a computer expert or a beginner, you will quickly come to grips with Mamutu. You do not have to be a specialist to free yourself from Malware.
The perfect security enhancement
Mamutu recognizes and reports the following types of behavior:
- Backdoor related behavior
- Spyware related behavior
- HiJacker related behavior
- Worm related behavior
- Dialer related behavior
- Keylogger related behavior
- Trojan Downloader related behavior
- Injection of code into other programs
- Manipulation of programs (patching)
- Invisible installations of software
- Invisible Rootkit processes
- Installation of services and drivers
- Creation of Autostart entries
- Manipulation of the Hosts file
- Changes of the browser settings
- Installation of debuggers on the system
- Simulated mouse and keyboard activity
- Direct disk sector access on harddisk
- Changes of the system group policies [NEW!]
Full control over internal system activities
You can now decide for yourself what programs are allowed to start on your PC and what actions may be performed. Detailed application rules are now available, allowing you to individually specify the permitted behavior of every application:
- Monitor application, but allow specific activities
Select this option to always allow particular specific behavior of a program. In certain situations a benign program can contain a function that is very similar to a damaging function and is thus reported. If you are sure that this action is actually not dangerous then you can allow it. All other types of dangerous behavior are still reported. - Always block this application
Select this option to permanently block a particular program. You can also use this feature to provide child protection by preventing other PC users from starting a particular application. - Exclude from protection
Select this option to completely exclude an application from the monitoring process. Use this when you always trust an application and are sure that it does not execute any damaging actions.
Bonus feature: Application protection
You can use the application rules to protect specific programs from third-party manipulation. For example, this feature is used to prevent Mamutu from being terminated by Malware in order to disable the protection. You can also make use of this feature. You can protect your Browser and other important programs from being illegally terminated.
The program is available for $27.00 (1-year subscription), but it will be free for a limited-time offer by giveawayoftheday.com.
VIPRE Antivirus Demonstration
December 16, 2010 by admin
Filed under Security Channel
Finally! Security that no longer slows down your PC with Vipre Antivirus
December 14, 2010 by admin
Filed under Protection Tools
Nowadays the internet threats is growing up so fast like viruses everyday more than a hundred type is discovered, even the scams and malware is being smarter and more danger on stealing personal information, so everyone looking for protection solution that can protect them as proactive system to detect the new threats.
Adobe races to patch zero-day vulnerability in Flash Player
September 26, 2010 by admin
Filed under Security News
Adobe has issued a security advisory about an as-yet unpatched vulnerability in its popular Flash Player software, affecting users of Windows, Mac, Linux, Solaris and even Google Android.
The critical security hole could allow an attacker to take control of your computer and run malicious code.
The firm also confirmed that the vulnerability also affects Adobe Reader 9.3.4 for Windows, Mac and UNIX, and Adobe Acrobat 9.3.4 and earlier versions for Windows and Mac. The reason that Acrobat and Reader are also affected is because the programs support Flash content inside PDF files
The new warnings follow closely after news last week of another vulnerability in Reader and Acrobat that was being exploited by malware authors.
Adobe has announced that an update for Flash Player tackling the latest vulnerability is expected to be available during the week of September 27, and an update for Acrobat and Reader will be available the following week.
Last month, Sophos blogger Chet Wisniewski interviewed Brad Arkin, Adobe’s Senior Director of Product Security and Privacy, about the firm’s security strategy and their upcoming sandboxing technology.
You can also download the interview directly in MP3 format.
Android malware steals info from one million phone owners
August 1, 2010 by admin
Filed under Security News
Updated A developer of Android apps has been accused of using their apps to steal information from more than one million smartphone users.
John Hering and Kevin MaHaffey, of mobile security firm Lookout, told the Black Hat security conference in Las Vegas that they discovered that a wallpaper app developed by Jackeey Wallpaper (who have created over 70 different applications for the Google Android mobile operating system) secretly transmitted affected phones’ numbers, subscriber identifiers, and voicemail numbers to a server in Shenzen, China.
Over a million people are believed to have downloaded the app – which Sophos has not yet seen – from the Android Market (Google’s equivalent to the Apple iPhone AppStore).
This isn’t the first time that the Android smartphone operating system has apparently been targeted by malware, of course.
One of the challenges that owners of smartphones running the Android operating system face is that it is not as closely monitored as Apple’s equivalent, and adopts a more relaxed philosophy as to what apps can be published.
Although there’s much criticism that Apple has received for the way it controls the iPhone environment, it’s clear that the only malware attacks we’ve seen to date on that platform (such as Duh and the infamous rickrolling Ikee worms) have affected users who have chosen to jailbreak their iPhones and escape the relative safety of the AppStore.
Yes, malware has previously emerged for jailbroken iPhones, but the malicious applications have not made it onto users’ devices via Apple’s highly guarded AppStore.
It remains to be seen how many users will treat security as a factor when choosing between the rival mobile operating systems.
Update Some media reports suggested incorrectly that voicemail passwords were accessed by the wallpaper app, and it’s important to make clear that this is not true.
Free Windows Shortcut Exploit Protection Tool From SOPHOS
July 27, 2010 by admin
Filed under Protection Tools
What is the Windows Shortcut Exploit?
The Windows Shortcut Exploit, also known as CPLINK, is a zero-day vulnerability in all versions of Windows that allows a Windows shortcut link, known as an .lnk file, to run a malicious DLL file. The dangerous shortcut links can also be embedded on a website or hidden within documents.
New Symbian Malware On The Scene
June 30, 2010 by admin
Filed under Security News
New versions of mobile operating like Apple’s iOS and Google’s Android may be in the news of late, but for all the publicity both receive older Symbian operating systems still make up around half of all smartphones sold in 2009. Advanced Threat Researcher Paul Ferguson came across a new suspicious application running on the S60 platform:
Calling itself ZvirOK, the application has one primary payload: to send a text message to the number 7250, with the text mumym xxx joker90. The intent behind this is unclear: perhaps it could be related to pay services frequently provided by mobile operators. This could cost the user money, particularly if these fees are high. Beyond that, however, no one can really say for sure.
Trend Micro products detect this malicious application as SYMBOS_FLOCK.I. The Python script responsible for sending the text message is detected as TROJ_FLOCK.I.
‘Teacher nearly killed this boy’ – rogue spamming Facebook app at large
June 14, 2010 by admin
Filed under Security News
Over 190,000 people have so far clicked on a link sent by a rogue Facebook application, which tempts users into giving the application access to their Facebook profile in exchange for seeing a “shocking video” of what is alleged to be a teacher physically assaulting a boy.
A quick search on Facebook reveals thousands of users are promoting the link on their newsfeeds, encouraging their friends and acquaintances to also add the application:
A typical message reads:
I am shocked!!! The teacher nearly killed this boy: http://bit.ly/aWeBMl - Worldwide scandal!
Clicking on the bit.ly link redirects Facebook users to a page promoting a Facebook application called “Teacher nearly kills a 13 year old boy. SHOCKING!”, which offers what appears to be a video thumbnail of the attack and the encouragement to “Click here, then ALLOW, to see the shocking video”.
However, if you are tempted to follow the on-screen instructions to view the video you will also be allowing the third-party application to gain access to your profile, and to repost the spam message to your own wall.
Sophos iPhone app – free download now available
June 14, 2010 by admin
Filed under Security News
Sophos has launched its first application for the Apple iPhone – designed to give you a better view of the security threats that are out there, with live hourly updates direct from SophosLabs.
The app, which also runs on the iPod Touch and the iPad, allows you to access Sophos information when you’re on the move or away from your desk, and includes the following supa-dupa features:
Threat Spotlight Experts from our labs detail some of the most interesting threats that they have analysed in the last week, explaining who is at risk, details of the attack and how to avoid becoming a victim.
Latest threats A dynamic list of the latest top ten threats analysed by the experts in SophosLabs, providing detailed information on their prevalence and a helpful link to further details on the Sophos website.
Stats Sexy graphs to bamboozle your boss with – showing in technicolour pie charts the latest stats for top email attachment malware attacks, spam and web-based threats.
Maps Now this is funky. Your iPhone will show you a world map, allowing you to view not just the latest email, spam and web attacks – but where they have been spotted around the world. You can even zoom in on particular countries, and view the subject lines of spams being sent around the globe.
Info Links to our blogs, our latest threat report, and loads of other good stuff.
So, what are you waiting for? Grab it from the Apple App Store now, or search for “Sophos” in the iTunes App Store.
We’re very interested in getting feedback as to what you think of this Sophos app. So please do leave us a rating and a review on iTunes, as it will help us decide if we should develop it further.
Also, if you have the time, why not quickly fill in the following survey to tell us what you’d like to see next from the Sophos Security Threat Monitor app?
