Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11The first warning about malicious code hidden in the .zip file
Security researchers have discovered vulnerabilities in common file formats, including .zip. These formats can be used to hide the detection of antivirus software and transfer malicious code to the victim's computer .
According to Mario Vuksan, president of ReversingLabs, eight vulnerabilities were discovered on the .zip files (Microsoft Office supported), along with seven other vulnerabilities in .7zip, .rar, .cab and .gzip formats. These vulnerabilities can be used by an attacker to hide malicious code to bypass the antivirus software's eyes. They will be attached to emails that antivirus software is hard to detect.
The file will be used directly via Gmail or Hotmail because they are a reliable format. Antivirus software cannot detect malicious hidden parts in those formats. Each time the file is opened, the malicious code will enter the system.
Vuksan said that he and other researchers have reported this phenomenon to antivirus software manufacturers and other security so they can update the product sold. The findings will also be presented by him and two other partners at the Black Hat Europe Security Conference in Barcelona today (April 15).
He also plans to release a tool called NyxEngine so that companies can use to scan online files for questionable properties and can find malicious code hidden therein.
In addition to being used to attack computers, these vulnerabilities can be used to hide secret messages into other seemingly harmless files. Typically, they can be hidden in images and photos when sent.
Kareem WintersYou should read it
- Warning: The new Facebook virus, a malicious code that is spreading rapidly through Messenger
- List of some types of files that are potentially dangerous on Windows
- Warning: New malicious code is infecting about 500,000 router devices
- Warning: Dangerous new malicious code spills over to Vietnam
- Warning: a new variant of the virus that fills virtual money via Facebook Messenger will appear every 10 minutes
- Warning of new malware appear like Wannacry, capable of deleting Vietnamese percussion on computer
- Warning: New malware can hijack Vietnamese users' access to Facebook and Gmail
- Bkav software is mistakenly recognized as malicious code
May be interested
- Warning: VPNFilter malicious code attacks the router that has 'evolved', there are many extremely dangerous new features
newly discovered experts, vpnfilter has attacked and infected more than 500,000 routers recently added the ability to remove https encryption, attack intermediaries, and even wipe information on the device itself. . - Warning: New malware can hijack Vietnamese users' access to Facebook and Gmaila new line of malicious code using plugx rat is attacking vietnamese users.
- Warning of new malware appear like Wannacry, capable of deleting Vietnamese percussion on computera new type of malicious code appeared, taking advantage of vulnerabilities in the windows operating system (the ms17-010 vulnerability was announced in march 2017) to spread widely in the local area network (lan) (similar to how it spreads). like the legendary wannacry virus) is spreading in vietnam.
- 14 games on the App Store contain malicious code, iPhone users be carefulsecurity researchers wandera recently discovered 14 games linked to a server once used to control malware golduck that made the android world chaotic last year.
- Warning: new code of virtual money digging is available via Facebook Messengersecurity researchers from trend micro have discovered a new virtual money code that is attacking users via facebook messenger called facexworm.
- Warning: New variants of malicious code digging on Facebook threaten users in Vietnambkav has issued a warning about the emergence of a new variant of the virtual money code spread via facebook, w32.fbcoinminer that is threatening users in vietnam.
- Fileless malware - Achilles heel of traditional antivirus softwareby the definition of being unified and widely recognized by many industry-leading security experts, the malware fileless is the type of malicious code that does not write malicious executable files to the file system.
- After WannaCry, Petya's 'extortion' malicious code is raging, this is a remedy to preventthe 'blackmail' malicious code called petya, which appeared under the new version of petrraprap, is similar in effect to the wannacry malicious code, causing the computer system of many multinational companies to be shattered. according to the initial record, these first countries infected with malicious code include ukraine, russia, britain and india.
- Malicious code is growing upsecurity firm mcafee warns that malicious code is currently on the way to prepare to reach a new level of complexity and professionalism. not only the malicious code and adware are now becoming a professionally distributed service
- Warning: Appeared fake FaceApp application to install malicious code on users' devicesrecently, experts from kaspersky have discovered a fake faceapp application created and used by hackers to steal user data.
Symantec: more than 1100 computers were attacked by botnets
Norton AntiVirus 2011 Beta launched
The return of 'Storm'
Vietnam disperses spam in the fifth world
Kaspersky Internet Security 2011 Beta causes the computer to hang
Emerging new attack worms via Yahoo! Messenger