How-To Geek
Week in Geek: IE 9 is Top Browser in Malware-Blocking Study
This week we learned how to setup a powerful Wiki on a Windows PC, “replace a missing battery meter, repair VirtualBox hard-drives after improper moves, & understand hard-drive spin downs”, how Linux file permissions work, the methods you prefer for streaming your media, celebrated the release of the final Harry Potter movie with a terrific desktop customization set, and more.
Photo by creative.paradox.
Weekly News Links
Chart courtesy of NSS Labs.
- Internet Explorer 9 utterly dominates malware-blocking stats
Internet Explorer 9′s dual-pronged approach to blocking access to malicious URLs—SmartScreen Filter to block bad URLs, and Application Reputation to detect untrustworthy executables—provides the best socially engineered malware blocking of any stable browser version, according to NSS Labs’ latest report. - Hackers gunning for banks’ Web servers, sites
The increased number of codes resulting from more complex services and features being introduced on banking Web sites, is also increasing the attack surface area for hackers to exploit. At the same time, cybercriminals recognize the need to understand more codes and this increases the sophistication of their attacks. - More malware targeting Android
Researchers are reporting the discovery of malware targeting Android devices, specifically a new variant of the DroidDream Trojan found in apps that Google removed from the Android Market, as well as malware on alternative app markets in China designed to run up premium SMS bills, and a data-stealing Trojan that targets one-time bank SMS pass codes. - ZeuS trojan attacks Android
Several AV vendors report that, after targeting Symbian, BlackBerry and Windows Mobile devices, a variant of the ZeuS online banking trojan now also infects Android smartphones and will upload any TANs that arrive via SMS text message to a server. - Vulnerability in Skype allows accounts to be hijacked – Update
Popular VoIP software Skype contains a security issue which could enable an attacker to gain access to a contact’s account. In a security advisory, Levent Kayan, who discovered the vulnerability, reports that in some cases it could even allow access to the user’s system. - VLC Media Player vulnerable to heap overflow exploits
According to the VideoLAN project, the popular VLC Media Player is susceptible to two heap overflow vulnerabilities in the Real Media and AVI file parsers. - Java vulnerability demonstrates file planting
Researchers at ACROS Security have shown how the current Java Runtime Environment (JRE) can be coerced into running an executable in the current directory. They offer it up as an example of “file planting”, a more general version of binary planting seen last year as Windows applications were found to be loading DLLs from unsafe sources. - Study finds 12.5% of companies violating own do-not-track policies
The Do Not Track efforts led by self-managed advertising groups aren’t going as well as some might hope, with at least eight participating companies continuing to track users across the Web even after they opt out. - Hotmail banning common passwords to beef up security
To try to ensure that Hotmail accounts don’t fall prey to attacks, Microsoft will soon be changing its password policy, to forbid the use of particularly common passwords. - User-created apps to face greater security risks
User-developed applications will account for at least 25 percent of new business software by 2014, driving the need for companies to adapt to this rising community of “citizen developers”, according to a report by Gartner. - How China stopped spam and malware distribution on its domains
In most countries it’s cheap and easy to register a domain name. Not in China where the government makes you run things past them. A side-effect was to kill off spamming from Chinese domains. - How digital detectives deciphered Stuxnet, the most menacing malware in history
It was January 2010, and investigators with the International Atomic Energy Agency had just completed an inspection at the uranium enrichment plant outside Natanz in central Iran, when they realized that something was off within the cascade rooms where thousands of centrifuges were enriching uranium. - Google+ faces thorny online identity issues
Google, trying to take a stand with its new social network, requires people to use real-world names on Google+. The real world, though, turns out to be more complex than a simple rule can accommodate. - Redesign set to make Firefox more responsive
Mozilla has begun turning the Firefox crank faster with a rapid-release development cycle. So what’s in store now that we can expect a new version every six weeks? A lot, including 64-bit support on Windows and a plan to reduce the open-source browser’s memory usage. - Mozilla’s BrowserID aims to simplify authentication on the Web
Mozilla aims to simplify account registration and authentication on the Web with a new technology called BrowserID. It is a decentralized authentication system allows the Web browser to manage the user’s identity.
Random TinyHacker Links
Photo courtesy of Classic Shell.
- Windows 7 – How to Make the Windows Explorer Better
Try Classic Shell. This complete tutorial, takes you through the latest version of this great tool for Windows. - Computing with Windows 7 for the Older and Wiser
Do you need to teach somebody older about computing? Check out this book. It might help you ease the learning experience. - Transformers 3 Theme for Win 7
Another hit summer theme from Microsoft. - Infographic Startup visual.ly Is Open To All
Previously in private beta, San Francisco based startup visual.ly helps you create, search and share infographics. - Speaking of the Space Shuttle…
A fun pictorial infographic depicting the changes in technology during the Space Shuttle’s active service period.
Super User Questions
Got a tough computer question? Then get the answers you need at Super User.
- Does installing licensed Windows software (e.g. CS5) on WINE contravene EULA?
- What is an FTP client, what would I use one for, and do I want one?
- Fastest way to reproduce a Blue Screen of Death (BSOD)?
- Do I really need to clear my browser cache after using a https site to protect the privacy of the pages I visited?
- Security Concern with my Windows 7 Box at Work
How-To Geek Weekly Article Recap
Add some heat to your weekend reading with our hottest HTG Main articles of the week.
- How to Migrate from Facebook to Google+
- Setup SSH on Your Router for Secure Web Access from Anywhere
- How to Use EXIF Data to Learn From Master Photographers
- 5 Tips For Getting The Most Out of Your Tomato Router
- Beginner Photoshop: Black and White and Red Photo Effect in Ten Seconds
Geeky Goodness from the ETC Side
Want something fun to read this weekend? Then kick back and relax with our most popular ETC posts of the week.
- Super Mario Earth – The Perfect World Map for Your Collection [Fun Image]
- Evolution of the Sun Cycle [Wallpaper]
- External Storage – Then and Now [Image]
- DOS Prompt [Wallpaper]
- Dual Boot a Galaxy Tab with Honeycomb and Ubuntu
- Take a 360-degree Tour of the Space Shuttle Cockpit [Science]
- Dark Bokeh Magic [Wallpaper]
- Cable Map Is an Interactive Global Undersea Cable Map
- Oyster Compares Hotels’ Advertising to Reality
- Download Your Favorite Google Web Fonts to Install on Your Computer
One Year Ago on How-To Geek
Enhance your Ubuntu skills this weekend with these terrific articles from one year ago.
- How to Create Your Own Customized Ubuntu Live CD
- Rescue Old, Damaged CDs with an Ubuntu Live CD
- Force Quit an Unresponsive Graphical Application in Ubuntu
- How to Enable Icons on the Ubuntu System Menu (Minor Annoyances)
- How to Disable Login Sounds in Ubuntu
How-To Geek Comics Weekly Roundup
|
Subscribe |
Daily Email Updates |
|
You can get our how-to articles in your inbox each day for free. Just enter your email below: |
- By Asian Angel on 07/17/11
Comments (22)
-
Road Dog777A few posts back in this thread I was giving kudos to Microsoft’s latest Browser; MSIE-9, and advising users that a virgin install of that browser, with no extra add-ons was safer and faster, albeit kind of naked/stark without all those fancy toolbars, skins, gizmos and ad-ons that I used for years on previous builds of the MSIE browser. I pulled this article off a P.C. Magazine-online © post today that confirms Google, one of the most popular toolbars used to gain fast access to global information [but not every module NSS tested for safety] in a fancy GUI customizable layout showed infection. Google’s own testing showed infection in some modules they were using and is IMHO a timely admission that flows right into the subject matter of this thread.
http://www.pcmag.com/article2/0,2817,2388763,00.asp?kc=PCRSS05079TX1K0000992
Back in April Google pulled severaal driod aps so they are doing something, but for every module they d/c seems 5 more untested ones show up, hackers are tenacious buggas!
No I am not gloating, just glad they are warning the end-users that a problem exists. I could see for myself the drop in malware once MSIE-9 was up and running with no add-ons probably a 70% drop in real-time malware detection/elimination by my own real-time web malware scanners.
Hope this turns my opinion into something Google has even admitted to, it would have been a better write up had they come crystal clean and listed the culprit modules so those who still use Google as a handy toolbar could wipe them off the toolbar. Oh well, they remain cryptic on that note. (RSS-feed 20 July ’11)
Safer Surfing to All,R D
Comments are closed on this post.
If you'd like to continue the discussion on this topic, you can do so at our forum.
Go to the Forum
i thought IE browsers were one of the unsafest ??
could someone explain to me?
note: im not that geeky :)
One can’t help but notice that this test pits the latest version of IE against older versions of Chrome, Firefox and Opera.
@elo, older versions are. IE9 is a greatly improved browser over its predecessors.
Yeah, like I believe that.
Socially Engineered Malware, What does that mean?
Please don’t publish such rubbish. Let someone prepare malware with no knowledge of what for and test it on latest versions of the other browsers, then I think we shall see completely different results.
hmm this is probably some fake results they probably just needed some publicity
Looks like the “IE9 vs The World” test might be a tad biased – NSS Labs did a similar report in March 2009, saying IE8 was the greatest, but that report was, according to an article on the Tech Herald, (1) working with a limited grouping of sites, (2) not peer-reviewed or transparent (they never said which sites they used), (3) taking no notice of layered security protocols or add-ons on other browsers, (4) using older versions of other browsers (like this one), and finally (5) funded by Microsoft.
– This is worth repeating.–
IE would keep clueless internet surfing hounds from infecting their computers with malware/grayware/spyware/scareware crap that accounts for countless hours of technicians time. From a cost/benefit analysis I do believe this is a good thing.
This reply might help elo who started this thread.
MSIE-9 is a very good browser, probably the only way to go unless you like ‘nags’/reminders for MSIE-8/Windows-7 users to upgrade each time they go into that browser. 128-bit encryption is about as good as it gets for commercial use. I don’t know what Safari runs at (encryption?) I am leaving my MSIE-9 virginal, only MS updates when they surface/or load (leaving that alone, OK!)
What many novice users fail to understand is as a browser Redmond coded this version of Internet Explorer for Windows-7 use, (64 & 32-bit installs) but when you start adding 3rd party tool-bars and nice to have add-on gizmos to global sources some untested by NSS Labs, that is often where a malware exploit can and does enter. So to having a good malware real-time web monitor is starting to become a vital part of anti-malware programs/suites. So I have picked up much less malware by sacrificing all the neato add-ons I used to use on previous MSIE builds; a Yahoo, Google or Ask (etc.) toolbar can allow malware access to my running fine MSIE-9. If I want to know the price of airfare or stocks or socks, I find them in modules I can add into the body of my start portal, my.yahoo, same with most other clones of any users browser/mega-customizable start page.
I would be interested to hear what other users think about the premise that keeping a browser 3rd-party add-on free probably makes it a safer (and faster) tool. Or is that reopening a subject already fully covered. Not much into wading through old archives that paint a picture of what was OK [or not] when MSIE-6 debuted & ended up with more patches/KB’s by the time MSIE-7 came out than an old quilt.
R D
“The study only looked at sites that depended on tricking users into installing malicious software; anything that used browser flaws to run wasn’t included in the test.”
So as long as i have common sense and don’t download and run random .exe files i should be fine then? ;)
I run Windows 7 64 bit, and have both Internet Explorer 9 and Firefox 5 (most recent), and I must say I haven’t had EITHER one let any malware past. My son likes Explorer 9, but I like Firefox–Firefox uses about 25% less RAM than Explorer 9 and rarely crashes, unlike Explorer 9.
IE9 should be up there will all other browsers but sadly they are not. Maybe IE10 will change that.
y not switch to linux rather than depending on windows if u r so virus or malware paranoid.
now the trend is on tricking users to install malware y not switch over to linux as it is better protected not just at browser level but also file system shield and execution permissions.
the web of trust add on is also very good at doing things fine.it gives rating to websites but i dont know wether it prevents a site from installing malware..please shed some light.
You mentioned that IE9 “provides the best socially engineered malware blocking of any STABLE browser version.” I don’t think IE has been in the stable version category for years.
Hmm…yes. I have to agree with a previous poster. It was comparing IE9 with OLDER versions of other browsers. Not a fair test at all.
It’s just a shame that those of us that don’t want to spend $120.00 for an operating system that should have been an update can’t use it.
I think some credit is due to MS if they’ve finally got their act together with their browsers. I have doubts about NSS Labs running this study objectively though. As a previous poster mentioned they’ve been funded by Microsoft for years and although MS apparently didn’t fund *this* study, NSS remain one of their gold partners. Are NSS really going to slam a major sponsor? It’s perfectly possible to carefully select a set of tests to give honest results, but optimized for one piece of software under one set of conditions.
That said, if by suspecting and blocking everything IE9 prevents what might charitably be called user-ignorance based attacks (“Hey, this site says I need to install NotAKeylogger.exe! OK, here I go!”), it’ll be less hassle in the long run for those of us who have to clean up afterwards :)
@Seasider
“Socially Engineered Malware, What does that mean?”
A “Socially Engineered Malware” is a malware that is spread, not by using a design/technical flaw in the browser so that it will silently download and install on your system, but by “gaining the trust” of the user that will KNOWINGLY download and execute that malware THINKING that it’s some kind of “super-neat-useful” thing.
Read this for more info
http://en.wikipedia.org/wiki/Social_engineering_%28security%29
Next time you wanna bash about some studies done by people with “no knowledge”, it woul be best if you got some yourself ;)
Concerning the study … I don’t know if these results can be trusted, as we know nothing about the url samples the lab used to conduct their tests …
That and the obvious version issues.
One good point thought : IE is, and probably will remain for a long time, the #1 used browser in businesses, mostly for historic compatibility reasons. And god knows having to reinstall OSs every now and then because the system is full of malwares (and because it’s actually faster than taking the time to remove said malwares, downloaded from idle-time on the internet) is damn time consuming ! If IE9 is a step towards the reduction of “global stupidity” (oh … I didn’t know that was dangerous) … that can only be a good thing ;)
@ankur
well you see… the thing is as far as I know it isn’t better protected or better at much anything either, that I know of.
see for you to be able to get a virus it must be coded for the OS first, so basically if its not multiplatform made you can’t get the same virus on a different OS.
so if I’m using Windows and I download this virus here off Facebook, then my computer doesn’t work so I go and startup my Unbuntu computer and get back on FB and download the same thing and try to use install it, it just wouldn’t work.
so the only thing that makes any other OS than windows is that theres less of that stuff put out for it.
and the day Linux or Mac gets on top, theres a chance its gona die soon, from lack of protection.
NSS Labs have a need to keep in Microsofts good books, look deeper folks
Please, everyone switch to IE9, I need the money I’ll make cleaning your computers to buy my new Camaro.