Twitter
Nov
27
This might sound funny, but we're at a stage where you need to protect your AV software. SecurityFocus has published an article on the research done Sergio Alvarez and Thierry Zoller (for N.runs), which concludes that while AV software is protecting clients against malware (running at userspace), the AV software (typically running at kernel level) is itself vulnerable to exploitation.
Best part:
"N.runs plans to release a product to protect against antivirus parsing vulnerabilities, and the contact information at the end of the presentation includes the e-mail address of the company's director of software sales."
.. don't get carried away with the argument that these guys are marketing their software through research. I think that's only appropriate - the problem is real and there's little FUD involved. There's a huge difference between security software and secure software.
The question then is .. will we need protection for the software that protects your AntiVirus?
Best part:
"N.runs plans to release a product to protect against antivirus parsing vulnerabilities, and the contact information at the end of the presentation includes the e-mail address of the company's director of software sales."
.. don't get carried away with the argument that these guys are marketing their software through research. I think that's only appropriate - the problem is real and there's little FUD involved. There's a huge difference between security software and secure software.
The question then is .. will we need protection for the software that protects your AntiVirus?
0 Trackbacks