Trojan behavior on favorite HIPS based security apps

damien76 · Apr 29, 2011

This is an eyeopener for existing security apps in town. I have been reading quite a bit from another forum about Stuxnet/Blackday trojans and the like and I just thought that the members should be aware of the behavior of some popular security programs on the said trojans.

The links are here:

Blackday trojan versus HIPS

Gpcode trojan versus HIPS

I tried to ask around in one of my firewall forum and got some replies there though limited.

OP Pro on Stuxnet and Blackday trojan

Now there has been a thread here about Comodo and in connection with link 2 is CIS's response or say, temporary solution pending the release of version 6.

weakness of the gpCode

Users have different security app combinations. The apps tested/used are popular that many here are using them ( well at least that's what I think). Each of us fall under some kind of level when it comes to security apps know-how/application but I think that we all here need to be informed (from the "real-techy security expert" to the "average dude

" towards the beginner who always just uses "default").

The contents of the links you may find are limited but very very informative. Honestly the test needs to be expanded and imho the apps that were requested there (to be tested) should be tested as there is a concern now going on based on the talk going on there.

Just for the information of the group here.

Stay safe!

goscuter1 · Apr 29, 2011

damien76 said:
This is an eyeopener for existing security apps in town. I have been reading quite a bit from another forum about Stuxnet/Blackday trojans and the like and I just thought that the members should be aware of the behavior of some popular security programs on the said trojans.

I agree that information is always a good thing; but seeing comments like this - and knowing how prevalent this particular attitude is...

monkeybutt
Regular Poster

Comodo has not been putting in a good showing that's for sure.

I mean...I'm no fan of Comodo's but surely I cannot be the only person that's thinking the Obvious.

When it comes to containing code, you know what I bet would make your job really easy and make your company look super fantastical effective and tops? I dunno, but I bet it would be if you released it "into the wild".

After all, you gotta compete right? It's a domino effect. Game theory logic says it's a race between the major commercial names, to write the malware that makes the other guys put in a poor showing.

damien76 · Apr 29, 2011

You are right and I too also felt disgusted as to some of the prevailing comments there about Comodo from obviously "other app" lovers. I just ignore that and take point on the possible corrective actions/countermeasures that I can adapt to my current security app setting. It's a prevailing thing there about Comodo that some gurus (basher...? hmmmm...) just cannot lay off. Actually there are a lot of that member behavior there not necessarily with the Comodo hate but it can spawn from just a mere reply or even a thread title. Now to separate ourselves or for any member of a particular forum from that kind of behavior is or will be spelled by attitude of fairness.

It's in how we take the information, leaving the emotion behind and try to learn from it.

Cheers

goscuter1 · Apr 29, 2011

damien76 said:
It's in how we take the information, leaving the emotion behind and try to learn from it.

That would be the mature thing to do...

I much prefer just to bash wildly, rant emotionally, but I am a child. At the end of the day you have to swing back to rational. As long as that magnet is working, I half-enjoy the outrageous slings and arrows...

But this AV thing, this is going in one direction really fast (game theory-wise). It's gonna get ugly, if it's not already. gl

damien76 · Apr 30, 2011

goscuter1 said:
damien76 said:

It's in how we take the information, leaving the emotion behind and try to learn from it.

Click to expand...

That would be the mature thing to do...

I much prefer just to bash wildly, rant emotionally, but I am a child. At the end of the day you have to swing back to rational. As long as that magnet is working, I half-enjoy the outrageous slings and arrows...

But this AV thing, this is going in one direction really fast (game theory-wise). It's gonna get ugly, if it's not already. gl

Sometimes I am like that too...but as I have been a victim of bashing from a forum before..(a "forum Jerk" bashed me for being a "newbie" for asking a basic question and continued to hound my posts until I gave up. Tough act for him, doing that in front of me will be a whole new ballgame..)..I took pains not to do it and put myself on their shoes (if I can..if not I just ignore it).

And things are getting ugly now, CIS is rushing the ver6 now the other AV's are secretly testing it. I don't know the others but they must not be complacent either.

You have a good one

Trojan behavior on favorite HIPS based security apps

damien76

New member

My Computer

goscuter1

New member

My Computer

damien76

New member

My Computer

goscuter1

New member

My Computer

damien76

New member

My Computer