AndyXS Posted March 17, 2009 Report Share Posted March 17, 2009 In the last few days there has been a sharp increase in the number of malicious websites taking advantage of vulnerabilities in Internet Explorer. Having tested quite a few of these on my virtual node these malicious websites cause Internet Explorer to crash which results in the execution of malware. Whats more worrying is that the end-user is completely unaware of such malware being executed.Sandbox IE is a fantastic tool for combating such malicious websites and downloads. Sandboxie basically runs Internet Explorer in "isolated" mode which means that the process is restricted from the rest of the system. Sandboxie will protect you from these malicious website even if you download and open several trojan they would not be granted permission to access any part of your system. It is important to note that Sandboxie does NOT detect or stop malware from executing, it simply restricts its permissions. I have put Sandboxie through some pretty tough testing and I am yet to find malware which has infected the computer. Sandboxie is free for personal use and is great tool for Internet Explorer.GesWall and DefenseWall are similar programs which you might wish to take a look at, although they are paid programs. Quote Link to comment Share on other sites More sharing options...
andsome Posted March 17, 2009 Report Share Posted March 17, 2009 Any other views on this software before I consider it? How about you pops? :D Quote Link to comment Share on other sites More sharing options...
Dencandy Posted March 17, 2009 Report Share Posted March 17, 2009 Sandboxie has been around for some time and generally seems to be highly regarded, see for example THIS LINK. However some testers have found that it has its flaws, SEE HERE.However, the general idea of surfing using a protected zone of memory out of which nothing can supposedly escape and whose contents are completely deleted on shutdown (known as a sandbox) is a good one. So good, in fact that Google Chrome uses something similar in its stealth mode (although Google is probably collecting data from it) and Internet Explorer 8 will have something similar as an optional browsing mode.However, even a sandbox can't protect you if you choose to install something onto your computer outside the sandbox. Probably the safest thing is to use a sandbox from within a Restricted User account as that prevents the installation of most applications. Quote Link to comment Share on other sites More sharing options...
AndyXS Posted March 17, 2009 Author Report Share Posted March 17, 2009 I used MDL to download several rogue scanners, several worms, several trojans, and tested a few IE exploits. Rebooted and the system and it was clean.There was the odd temp file left behind but nothing that was executed. Quote Link to comment Share on other sites More sharing options...
Dencandy Posted March 18, 2009 Report Share Posted March 18, 2009 MDL ?Minimum Description Length?Multi District Litigation?Molecular Design Ltd.?Please explain, AndyXS... Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.