Collaborate Disseminate
MalwareBytes has the ability to quarantine or to quote MB:
At that time, they were removed from the disk location where they were
stored, placed in quarantine, and modified so that they could not pose
a threat to your computer.
Situation: Using Python to make a simple quarantine software for malware.
What I know:
I do understand (from this forum no less) that one of the ways is to put the file in a quarantine directory and turn off all access to i… Continue reading Programmatically Quarantining files
The malware quarantine feature in several antivirus products could have been abused by local attackers to gain administrative privileges on computers. The issue, dubbed AVGater, was discovered by Florian Bogner, a researcher with security firm Kapsch. It exploits a user’s ability to restore suspicious files that antivirus programs have moved to quarantine. Bogner found a..
The post Quarantine Flaw in Antivirus Products Allows Privilege Escalation appeared first on Security Boulevard.
Continue reading Quarantine Flaw in Antivirus Products Allows Privilege Escalation
I’m working on a documentation of an IT system and I want to describe what is happening, when McAfee finds and quarantines a suspicious file. I have read the many questions on quarantining, but all the answers given, talk abo… Continue reading Are there differences between McAfee quarantine and other AV quarantining mechanisms?
I understand that most antiviruses by default quarantine infected files. I have changed it to remove all infected files immediately. Would this cause more harm than good?
Continue reading Antivirus settings: delete or quarantine the file?
I am reading a book on network security and when talking about user confusion it writes:
“It is not uncommon for a user to be asked security questions such as
Is it safe to quarantine this attachment? With little or no … Continue reading Can malware be dangerous even when quarantined?