Comodo and Avast are both on the list of virustotal.com and virscan.org they both didn't recognise it.
The whole AV-industry is a mess.
I've already seen it happen years ago on my mailservers, you get a new virus-/malware-variant every 15 minutes or so. They aren't recognised yet by the AV-vendor. It takes more time for the AV-vendors to come up with a signature than the bad guys can generate new variants. By the time the AV vendor has a signature a new variant already exists and the bad guys stopped sending mail with the old malware/virus.
The variants are created by software, the AV is useless.
I don't run AV anymore, I've not had any problems either (and yes I do checks as well).
99% of the problem is: do the software updates, disable all the plugins in your browser (like Adobe Acrobat and Java) and don't click on stupid attachemts.
If the developer can create a zero-day exploit why would he/she ship a payload which is already recognised by the AV ?
Also a lot of malware just gets a new version every 15 minutes by the push of a button. The AV vendors can't keep up. Detectionrates are going down.
Just a few days ago someone asked me to look at a Windows machine which had malware, I uploaded the binary to virustotal and virscan and they both mentioned things like: 7 out of 34 scanners recognise it. Most of the virusscanners that did recognise it, I had never heared off.
No PHP does not compile to native code, it would be faster if it did. Instead it is compiled to bytecode.
Pretty much no1 except for Facebook compiles PHP to native code, they have 2 projects. One which compiles it as a single binary, which they probably use now and a newer project which tries to the it at runtine. But that project isn't done yet.
Actually a Dutch judge did, the Germans haven't decided if I remember correctly (the Germans were first and said: yes that looks alike. But that was just because Samsung had no time to prepare for a proper fight).
It might have started with just a desktop with a browser you know. After one system gets compromised it might be possible to get deeper in the corporate networks of Sony.
Even the Nuclear facilities in Iran were not connected the Internet (it did have an air gap) but the Stuxnet virus still got in.
They seems to have fixed most issues by Firefox 10 and even beter in Firefox 11. They also are fixing a lot of extensions. They also added a lot of tools moreto find problems:
The easiest is to install Opera, the only browser with official Windows 2000 support AFAIK and start looking at what your next step is going to be to get off Windows 2000.
I also wanted to find some articles to also show you that most are NOT IT-related.
Pretty much all the work this charity does has an angle.
I don't remember the examples either, I stopped following what they do because I don't want to know.
But it usually is similair to what the US did a something like 10 years ago:
The US sends corn to African country to feed the people and allow them to grow more corn, because the farmers in that country had a really bad year.
And after that the African country can't export any corn anymore to other countries because they don't allow import of genetically modified corn.
Because the corn the US sent to these countries turns out is genetically modified corn.
This is obviously good news for the non-genetically modified corn from the US. It was also good for the farmers in the US which had the genetically modified corn, because they got paid for it.
The economy of the African country however suffers.
These kind of charitable things seem great in the press, but turn out to be devastating for a country.
There was no plan to give them PCs before the country threated not to buy from Microsoft.
Microsoft was using the charity as a way to presure them to go with Microsoft instead of Linux, they knew if they kept them on Windows they would make more profit than those PCs.
I wish I could find the news article, just now.
Anyway, it is one of many examples where the Gates Foundation was involved. Most of the examples are non-IT.
I would consider dedicated hosting instead of colo, if you find the right provider they will take care of any hardware issues (like having the right spare parts) and let you worry about all the other stuff.
I noticed someone below mentioned SingleHop, there are more/others have a look around to find the right pricepoint. Also try to find out where your users are and buy close to them (less latency is a good thing). So don't buy from Europe if all your users are in US, that sort of thing.
While I agree with you, it isn't as easy as you think it is.
These malware will just be "I'm an anti-virus" so yes, the user just clicks yes to 'give access to whole system', as a virus-scanner would probably not work from a sandbox.
It is very likely that the user is a large part of the problem, who do you intent to solve that ?
There are still people who download a piece of software just based on an ad on a website (free anti virus or whatever) and install that on their machine.
That was my thought too, if the methode of spreading includes the IP-address of the originator and/or several peers that would be one way to bootstrap the P2P system.
Slashdot Mirror
Comodo and Avast are both on the list of virustotal.com and virscan.org they both didn't recognise it.
The whole AV-industry is a mess.
I've already seen it happen years ago on my mailservers, you get a new virus-/malware-variant every 15 minutes or so. They aren't recognised yet by the AV-vendor. It takes more time for the AV-vendors to come up with a signature than the bad guys can generate new variants. By the time the AV vendor has a signature a new variant already exists and the bad guys stopped sending mail with the old malware/virus.
The variants are created by software, the AV is useless.
I don't run AV anymore, I've not had any problems either (and yes I do checks as well).
99% of the problem is: do the software updates, disable all the plugins in your browser (like Adobe Acrobat and Java) and don't click on stupid attachemts.
Most of the mail that is sent has at least 1 mime type, like text/html and a lot of times it also has a text/plain
These too are "attachments", the user interface might not show it that way but technically they are the same as any other attachment.
If the developer can create a zero-day exploit why would he/she ship a payload which is already recognised by the AV ?
Also a lot of malware just gets a new version every 15 minutes by the push of a button. The AV vendors can't keep up. Detectionrates are going down.
Just a few days ago someone asked me to look at a Windows machine which had malware, I uploaded the binary to virustotal and virscan and they both mentioned things like: 7 out of 34 scanners recognise it. Most of the virusscanners that did recognise it, I had never heared off.
No PHP does not compile to native code, it would be faster if it did. Instead it is compiled to bytecode.
Pretty much no1 except for Facebook compiles PHP to native code, they have 2 projects. One which compiles it as a single binary, which they probably use now and a newer project which tries to the it at runtine. But that project isn't done yet.
Don't be silly tablet computing has been going on for much longer than that.
They had "spreadsheets" in 1800 BC on tablets:
http://en.wikipedia.org/wiki/Babylonian_mathematics
Now that is tablet computing ;-)
Actually a Dutch judge did, the Germans haven't decided if I remember correctly (the Germans were first and said: yes that looks alike. But that was just because Samsung had no time to prepare for a proper fight).
I'm surprised they didn't use a sniffer like Wireshark to see what it is sending to Microsoft. I mean this is Google they could atleast take a look.
Or is it using HTTPS for the suggested sites feature ?
So some manufacturers will end up paying Apple and Microsoft per device sold ? That's crazy.
He who believes that the politicians are experts in all, or even some, fields they have to make decisions on is probably a fool.
Most politicians are just that, politicians. That is something they might have experience in.
It might have started with just a desktop with a browser you know. After one system gets compromised it might be possible to get deeper in the corporate networks of Sony.
Even the Nuclear facilities in Iran were not connected the Internet (it did have an air gap) but the Stuxnet virus still got in.
So really there isn't anything evil about Firefox 10 and getting upgrades to 11, 12, 13 and so on.
I believe Firefox 11 has better performance and memory usage is better and most problems with the addon compatibility have been fixed in Firefox 10.
So what is the problem ?
You wouldn't even need to uninstall Firefox 3.6 I believe.
I think Firefox 11 is going to be even better and they are fixing extensions now too.
They seems to have fixed most issues by Firefox 10 and even beter in Firefox 11. They also are fixing a lot of extensions. They also added a lot of tools moreto find problems:
http://blog.mozilla.com/nnethercote/
The easiest is to install Opera, the only browser with official Windows 2000 support AFAIK and start looking at what your next step is going to be to get off Windows 2000.
I'm not from the US, but how much choice did people have ? Usually with any war, there isn't much choice.
No one really wants war, most of the time war is a last resort.
Most non-technical users don't understand these things. Kids usually don't fully understand the impact/ramifications.
Atleast that is some of the arguments I've heared.
Most politicians also fall in the first catagory.
I also wanted to find some articles to also show you that most are NOT IT-related.
Pretty much all the work this charity does has an angle.
I don't remember the examples either, I stopped following what they do because I don't want to know.
But it usually is similair to what the US did a something like 10 years ago:
The US sends corn to African country to feed the people and allow them to grow more corn, because the farmers in that country had a really bad year.
And after that the African country can't export any corn anymore to other countries because they don't allow import of genetically modified corn.
Because the corn the US sent to these countries turns out is genetically modified corn.
This is obviously good news for the non-genetically modified corn from the US. It was also good for the farmers in the US which had the genetically modified corn, because they got paid for it.
The economy of the African country however suffers.
These kind of charitable things seem great in the press, but turn out to be devastating for a country.
As I mentioned, an angle.
There was no plan to give them PCs before the country threated not to buy from Microsoft.
Microsoft was using the charity as a way to presure them to go with Microsoft instead of Linux, they knew if they kept them on Windows they would make more profit than those PCs.
I wish I could find the news article, just now.
Anyway, it is one of many examples where the Gates Foundation was involved. Most of the examples are non-IT.
Also we all know where that money came from.
I would consider dedicated hosting instead of colo, if you find the right provider they will take care of any hardware issues (like having the right spare parts) and let you worry about all the other stuff.
I noticed someone below mentioned SingleHop, there are more/others have a look around to find the right pricepoint. Also try to find out where your users are and buy close to them (less latency is a good thing). So don't buy from Europe if all your users are in US, that sort of thing.
The Gates Foundation ? Really, have a look around how they do business. Because that is how it is run, like a business.
Bill Gates ? Are you kidding me ? Have you seen how the Gates Foundation does business ? It really is a business.
They don't give money to anyone, there is always an angle and the angle is money for their clan.
An education system in Africa or India that says they want to use Linux can get "free" computers if they pay for Microsoft Windows.
If they setup a shelter for the homeless, they first buy the buildings in the area which will increase in value and later sell them with a profit.
That isn't just a charity, it is a business.
While I agree with you, it isn't as easy as you think it is.
These malware will just be "I'm an anti-virus" so yes, the user just clicks yes to 'give access to whole system', as a virus-scanner would probably not work from a sandbox.
It is very likely that the user is a large part of the problem, who do you intent to solve that ?
There are still people who download a piece of software just based on an ad on a website (free anti virus or whatever) and install that on their machine.
That was my thought too, if the methode of spreading includes the IP-address of the originator and/or several peers that would be one way to bootstrap the P2P system.