A dangerous loophole has been discovered in the majority of common Windows security software, as discussed in a shocking report released by Matousec.com. Today’s malware writers and hackers are skilled enough to penetrate even the most up-to-date and expensive antivirus/antispyware software, as shown in this technological discovery. The latest invasion technique is known as the argument-switch attack or KHOBE attack, which allows malicious commands to bypass the protection of security software. Unfortunately, the technique has been proven to successfully bypass the level of protection offered by 35 of the most popular antivirus software programs, as shown in the list below:
- 3D EQSecure Professional Edition 4.2
- avast! Internet Security 5.0.462
- AVG Internet Security 9.0.791
- Avira Premium Security Suite 10.0.0.536
- BitDefender Total Security 2010 184.108.40.2067
- Blink Professional 4.6.1
- CA Internet Security Suite Plus 2010 220.127.116.112
- Comodo Internet Security Free 4.0.138377.779
- DefenseWall Personal Firewall 3.00
- Dr.Web Security Space Pro 6.0.0.03100
- ESET Smart Security 18.104.22.168
- F-Secure Internet Security 2010 10.00 build 246
- G DATA TotalCare 2010
- Kaspersky Internet Security 2010 22.214.171.1246
- KingSoft Personal Firewall 9 Plus 2009.05.07.70
- Malware Defender 2.6.0
- McAfee Total Protection 2010 10.0.580
- Norman Security Suite PRO 8.0
- Norton Internet Security 2010 126.96.36.199
- Online Armor Premium 188.8.131.52
- Online Solutions Security Suite 1.5.14905.0
- Outpost Security Suite Pro 184.108.40.20663.452.0726
- Outpost Security Suite Pro 7.0.3330.505.1221 BETA VERSION
- Panda Internet Security 2010 15.01.00
- PC Tools Firewall Plus 220.127.116.11
- PrivateFirewall 18.104.22.168
- Security Shield 2010 22.214.171.1243
- Sophos Endpoint Security and Control 9.0.5
- ThreatFire 126.96.36.199
- Trend Micro Internet Security Pro 2010 17.50.1647.0000
- Vba32 Personal 188.8.131.52
- VIPRE Antivirus Premium 4.0.3272
- VirusBuster Internet Security Suite 3.2
- Webroot Internet Security Essentials 184.108.40.206
- ZoneAlarm Extreme Security 9.1.507.000
Do you currently use any of the products listed above, and what could this mean for your computer?
Your computer’s operating system will basically shut down, meaning you will be unable to use your computer for anything whatsoever. Not only that, you will most likely not be able to restore your computer to normal operating capacity, and the PC will probably be destroyed. You may never be able to retrieve your important photos, personal information, or anything else that is meaningful to you and stored on your hard drive. Once the hackers have taken over your operating system, they are free to steal all of your personal and secured information and use your PC at their discretion.
The technique does not break through the actual scanning capabilities in the antivirus software programs. Antivirus software normally works by running live software on your computer and constantly scanning incoming information and data for known viruses, worms, spyware, and other types of malware. This alarming technique, rather, bypasses the host intrusion detection of Windows security software and utilizes your computer’s operating system to launch a full-scale invasion of your computer. Put simply, the technique allows hackers to thus intercept certain operating processes on your computer such as opening files or killing commands. Research has shown that if this type of attack was not successful on the first attempt with the antivirus software programs above, that the attack was always successful after one or two more tries.
Matousec.com is not alone in this battle to bring awareness regarding these dangerous security breaches. The Anitvirus Help Center was created with the main purpose of helping PC users to avoid malicious attacks and to get protected against them. The Antivirus Help Center is also recommending that if you are using any of the software products referenced above, that you review the products listed on our website and consider making a change.
Computer users are advised to avoid opening email from unknown sources and to avoid clicking on suspicious pop-up ads. Many users aren’t aware that merely trying to close a pop-up can invite trouble; clicking on “X” to close a window could actually initiate a download. A safer way to shut down pop-up ads is to hit CTRL-ALT-DEL and close the rogue program from the list of running programs. The most effective tools to defend your PC against any harm is to have the proper protection. For more information regarding how to avoid infection, check out our Antivirus Solutions page for the best products available to protect your computer.
Check out our Antivirus Solutions Page for the best antivirus software products available to protect your computer from harm.