Comodo Continues To Demonstrate Its Commitment To Secure All PCs With A New Suite of Testing Tools

Search downloads:

Home

Latest press releases

New application can help technical community expose virus threats such as rootkit installations, commonly overlooked by many other testing tools

Jersey City, NJ (April 18, 2008) - Comodo, a leading security company, announced today the release of a new application which incorporates five new security and HIPS functionality tests. These tests, especially those that detect rootkit installations, incorporate techniques commonly used by virus authors and provide a very good indication of a security product's ability to block real-world threats. Comodo developed these tests largely so that it can deliver new preventative intelligence to end users on the performance of their PC security solutions before damage is done.

Comodo Malware Labs is constantly identifying techniques that malware authors use to bypass PC security solutions. One particularly damaging threat identified by Comodo engineers occurs when a rootkit is installed, without permission, on a user's system. Rootkits are the "ultimate backdoor" giving hackers ongoing and virtually undetectable access to the systems they exploit. Rootkits are so damaging because they compromise computer systems by subverting the Windows Kernel, the central component of most computer operating systems (OSs) which manages the system's resources and the communication between hardware and software components. In worse case situations, a PC can be rendered useless once it has been infected with a rootkit, as often this type of virus cannot easily be removed or quarantined. Therefore, it is critical that users have an easy means to test for this type of vulnerability before damage is done. It is Comodo's hope that end users who discover they are vulnerable to rootkit installations after running these new tests will take measures to upgrade or replace their security software.

This set of testing tools was designed to emulate different types of attacks and include the following tests:

* Rootkit Installation 1 - Loads a driver in via ZwSetSystemInformation API. A very old, known and effective way to install a rootkit.
* Rootkit Installation 2 - Loads driver by overwriting a standard driver (beep.sys) and starting it with service control manager (e.g. Trojan.Virantix.B).
* DLL Injection 1 - Injects DLL into trusted process (svchost.exe) by injecting APC on LoadLibraryExA with "dll.dll" as a param. The string "dll.dll" is not written into process memory, it's from the ntdll.dll export table which has the same address in all processes. The APC is injected into second thread of the svchost.exe which is always in alertable state.
* DLL Injection 2 - An old technique but very widespread technique. A DLL is injected via remote thread creation in the trusted process, without using WriteProcessMemory.
* BITS Hijack - Downloads a file from the internet using "Background Intelligent Transfer Service" which acts from the trusted process (svchost.exe)

"Comodo's Labs identify many different techniques used by malware authors around the globe." said Melih Abdulhayoglu, CEO and Chief Security Architect of Comodo. "It is our hope that with these set of tests, users can be better informed about the state of their PC security and deliver this vital feedback back to their security providers. This is how we hope these tests will help drive better security solutions - industry wide."

The new Comodo HIPS and Firewall Leak Test Suite can be downloaded from the Comodo website at: http://personalfirewall.comodo.com/cltinfo.html
About Comodo

The Comodo companies provide the infrastructure that is essential in enabling e-merchants, other Internet-connected companies, software companies, and individual consumers to interact and conduct business via the Internet safely and securely. The Comodo companies offer PKI SSL, Code Signing, Content Verification and E-Mail Certificates; award winning PC security software; vulnerability scanning services for PCI Compliance; secure e-mail and fax services.

Continual innovation, a core competence in PKI, and a commitment to reversing the growth of Internet-crime distinguish the Comodo companies as vital players in the Internet's ongoing development. Comodo secures and authenticates online transactions and communications for over 200,000 business customers and 3,000,000 users of our desktop security products.

For additional information on Comodo - Creating Trust Online™ visit http://www.comodo.com

For more information, reporters and analysts may contact:
Judy Shapiro
Comodo
+1 (201) 963-9471
Email: judy.shapiro@comodo.com

Company: COMODO

Related downloads

	AV EAGLE Secuity Testing Suite CD .ISO 3.10 AV Eagle Stand Alone Security Testing (.iso)		300
	WinProxy Secure Suite 6.0 WinProxy 6.0 Internet Security Suite		2304
	PC Tools Disk Suite 2009 Disk suite to optimize, defrag and repair.		74
	Comodo SecureEmail 1.1 Secures your e-mail messages and protects con		43
	Comodo EasyVPN 1.5 Comodo EasyVPN		31
	Comodo i-Vault Password management secure password storage		318
	Comodo Internet Security 3.11 Award-winning Comodo Firewall, Antivirus Free		1006
	Comodo BackUp 2.1.117500.10 Comodo BackUp ? Powerful Backup/Recovery tool		587
	Comodo Memory Firewall 2.0.4.20 Free Comodo Memory Firewall		306
	Free Comodo AntiVirus 3.8 Free Comodo AntiVirus		1769

Related press releases

Comodo Continues To Demonstrate Its Commitment To Secure All PCs With A New Suit... [2008-04-18 11:23:00]
New application can help technical community expose virus threats such as rootkit installations, commonly overlooked by many other testing tools Jersey City, NJ (April 18, 2008) - Comodo, a leading...

"Testmypcsecurity.com" Provides First Independent, User Driven Testing Resource ... [2008-03-19 11:15:14]
Testing Resource is Part of Comodo's Trusted Internet initiative to secure PCs for free for all online users Jersey City, NJ (March 19, 2008) - Today, Comodo, a leading security company, announced ...

Comodo Shows Off Its Protection Landscape at the RSA Conference 2009 [2009-03-05 04:21:56]
Jersey City, NJ, March 05, 2009 - Comodo CA Ltd., a provider of digital security services and software, will demonstrate its Protection Landscape for enterprises at the RSA® Conference 2009. Comodo i...

Comodo Email Certificates are Vista and Firefox Compatible [2007-07-25 23:51:04]
Comodo Email Certificates are Vista and Firefox Compatible New compatibility makes these Email certificates available to many new users and remains free of charge Jersey City, NJ (July 26, 2007) -...

Comodo to Continue Free Email Certificates for Personal Use [2009-10-21 00:00:46]
Jersey City, NJ, October 20, 2009 - "Comodo continues its commitment to free email security," said Abdulhayoglu, the Chief Security Architect at Comodo. "We care for end users. We won't abandon them."...

With Comodo, New York Lottery Wins [2009-04-16 06:17:00]
Jersey City, NJ, April 16, 2009 - The New York State Lottery has decided to secure its online transactions with SSL certificates from Comodo CA. Comodo is the second-largest issuer of high-assuranc...

Comodo Security Architect Applauds BBC's Questionable Botnet Tactic [2009-03-19 23:16:17]
Jersey City, NJ, March 19, 2009 - "Well done, BBC!" crowed Melih Abdulhayoglu, about the British broadcasting network's permitting its program, Click, to demonstrate how susceptible computers on the I...

Comodo Webinar Educates Aspiring Amazons [2009-02-03 03:30:57]
Jersey City, NJ, February 03, 2009 - A February 12 online seminar presented by Comodo will tell emerchants how to build their customer bases by increasing customer trust. The webinar will explain t...

Comodo SSL Certificates Not Affected By MD5 Flaw [2009-01-08 05:28:16]
Jersey City, NJ, January 8, 2009 - Comodo CA Limited, the second-largest issuer of high-assurance digital certificates, today announced that none of its certificates is created using the MD5 hash func...

Comodo releases BOClean 4.23, formerly by Privacy Software Corporation (PSC) [2007-04-25 07:07:26]
New version provides robust malware protection as part of Comodo's strategic initiative to secure the desktop for free Jersey City, NJ (April 24 , 2007) - Comodo, a global Certification Authority a...

Filedoyen

Filedoyen is a single or dual-pane file and archive (zip) manager with integrated text, code and hex editors, file and folder compare and search. By combining these separate tools into one, Filedoyen makes file management both convenient and easy.

Smart Bro

Smart Bro is a free browser designed carefully to suite the user needs. It is built on the Internet Explorer technology. Smart Bro provides many options including: 1. Tabbed interface. 2. Integrated form filler 3. Popup killer.

DVD-Cloner

DVD-Cloner VII is the latest generation of the full-featured DVD copy software. It provides you easy-to-use tools and state-of-the-art technology that let you make quality DVD/Blu-ray copies.

Wondershare Pocket DVD Suite

Wondershare Pocket DVD Suite provides a perfect solution to the conversion from DVD to Pocket PC and from video to Pocket PC. It can convert DVD and almost all video formats for playback on Pocket PC.

WebSite X5 Evolution 8

WebSite X5 is the outstanding tool that helps turn your website dreams into reality. It's packed with advanced tools to help you create professional websites with all of the eye-catching features you see on the web's very best sites.

WinFlash Educator

Award-winning Flashcard Study and Testing System - Memorize study material fast! Create reusable decks, print flashcards, study and track your progress with this leading-edge learning tool! Powerful multimedia capabilities. Easy to learn and use.

AceErase File Shredder- Free

Secure file shredder with unlimited use of the zero wipe (1 pass) shredding algorithm to erase your files. Has easy drag & drop, quick installer/uninstaller, comprehensive help, & free updates until the next major version release. Portable capable!