Viruses/Worms News

Green Dam web filter still vulnerable to exploits

Friday, June 26, 2009

Green Dam Youth Escort, the web filtering software China is requiring PC-makers to preinstall on all new machines sold in the country starting July 1, is still vulnerable to exploits that web security experts warn could lead to the creation of a botnet for spreading malware.

China's government insists that the software is necessary for blocking access to pornographic content, but researchers using the software said it also blocks political content and tracks online activity.
Earlier this month, security researchers from the University of Michigan identified two security flaws that could have allowed remote parties to execute arbitrary code and take control of the computer, which the software maker has since patched.

But the researchers said last week they had discovered another security hole on the latest version which a maliciously-crafted website could exploit to take control of the computer. It took them only an hour to find the bug, they said.

The researchers wrote that making Green Dam safe from exploits will require substantial changes and careful retesting.

"It is unlikely that the required changes can be completed … before China's July 1 deadline for mandatory distribution of Green Dam with new PCs," they wrote.

Another security researcher has posted attack code to the Milw0rm website, which has been circulating in the wild for a week, according to CNET News.
ADNFCR-1765-ID-19239263-ADNFCR

Related News:

Age-old trick with brand-new target - 1.18.2010
Cyber criminals have turned to a scam from the early days of the internet to target the growing smartphone market: Trojan phone dialers.

Report: 'At least 34' firms attacked at the same time as Google - 1.15.2010
The Washington Post asserts that many U.S. companies were targeted in the same network security and email breach that affected Google and provoked the company's highly publicized spat with the Chinese government.

Gumblar botnet builder resurfaces with a vengeance - 1.7.2010
Though security researchers had believed it to be more or less dormant, the Gumblar malware came storming back into prominence at the turn of the decade, performing what Softpedia calls a "mass injection attack" on computers and websites around the world.

Symantec endpoint protection suffers from updating issue - 1.7.2010
As 2009 turned into 2010, users of Symantec's Endpoint Protection Manager ran into trouble with updates for the program, as any patches released after the end of 2009 were misidentified as being out-of-date.

Experts laud heuristic detection as necessary backup to signature-based solutions - 1.6.2010
Anti-virus programming experts say that behavioral or heuristic detection of malware will become increasingly important to safeguarding computer systems, as modern malware becomes more and more difficult to detect using traditional methods.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now