|27 Apr 2010||#1|
| || |
Browser Security / Financial Malware test
MRG Tests Malware Research Group
Quote: Originally Posted by MRG
This “test” is actually going to be an ongoing programme of assessing a cohort of security applications effectiveness in securing Internet Explorer 8 on an XPSP3 system against a combination of bespoke test tools, malware emulators and real, zero day to early life malware.
We are still in the process of securing the funds required to sustain this programme, but, to avoid delay and spark a bit of interest, we will be starting the first tests using our own, custom financial malware emulation tool.
We will repeat the test every 24 hours, each time using the same original build of our tool to assess the security applications ability to detect and counter this threat over time.
We will run the test, just using our emulator for the next week or so, until we have funds to widen the programme to include our other in-house tools (and so cover numerous vectors) and real malware.
The tool uses the same techniques employed by real malware to steal users banking data.
In this first test, we will use the tool to test security applications ability to:
1) * *Detect or block the test application on install
2) * *Prevent the tool from capturing data entered in to an HTTPS site using IE8
3) * *Prevent the tool from sending captured data out of the system
|My System Specs|
|Similar help and support threads for2: Browser Security / Financial Malware test|
|New version of Gozi financial malware bundles MBR rootkit||Security News|
|New financial malware targeting banks avoids AV detection||Security News|
|Microsoft Launches New Browser Security Test; Declares Themselves.....||Security News|
|Sunspot financial malware targets Windows||Security News|
|weird browser security test-everything fails except IE 9||Security News|
|Online Banking / Browser Security Test - Day 1||System Security|
|Browser Security Test||System Security|