|
Comodo Continues To Demonstrate Its Commitment To Secure All PCs With A New Suite of Testing Tools
New application can help technical community expose virus threats such as rootkit installations, commonly overlooked by many other testing tools
Jersey City, NJ (April 18, 2008) - Comodo, a leading security company, announced today the release of a new application which incorporates five new security and HIPS functionality tests. These tests, especially those that detect rootkit installations, incorporate techniques commonly used by virus authors and provide a very good indication of a security product's ability to block real-world threats. Comodo developed these tests largely so that it can deliver new preventative intelligence to end users on the performance of their PC security solutions before damage is done.
Comodo Malware Labs is constantly identifying techniques that malware authors use to bypass PC security solutions. One particularly damaging threat identified by Comodo engineers occurs when a rootkit is installed, without permission, on a user's system. Rootkits are the "ultimate backdoor" giving hackers ongoing and virtually undetectable access to the systems they exploit. Rootkits are so damaging because they compromise computer systems by subverting the Windows Kernel, the central component of most computer operating systems (OSs) which manages the system's resources and the communication between hardware and software components. In worse case situations, a PC can be rendered useless once it has been infected with a rootkit, as often this type of virus cannot easily be removed or quarantined. Therefore, it is critical that users have an easy means to test for this type of vulnerability before damage is done. It is Comodo's hope that end users who discover they are vulnerable to rootkit installations after running these new tests will take measures to upgrade or replace their security software.
This set of testing tools was designed to emulate different types of attacks and include the following tests:
* Rootkit Installation 1 - Loads a driver in via ZwSetSystemInformation API. A very old, known and effective way to install a rootkit.
* Rootkit Installation 2 - Loads driver by overwriting a standard driver (beep.sys) and starting it with service control manager (e.g. Trojan.Virantix.B).
* DLL Injection 1 - Injects DLL into trusted process (svchost.exe) by injecting APC on LoadLibraryExA with "dll.dll" as a param. The string "dll.dll" is not written into process memory, it's from the ntdll.dll export table which has the same address in all processes. The APC is injected into second thread of the svchost.exe which is always in alertable state.
* DLL Injection 2 - An old technique but very widespread technique. A DLL is injected via remote thread creation in the trusted process, without using WriteProcessMemory.
* BITS Hijack - Downloads a file from the internet using "Background Intelligent Transfer Service" which acts from the trusted process (svchost.exe)
"Comodo's Labs identify many different techniques used by malware authors around the globe." said Melih Abdulhayoglu, CEO and Chief Security Architect of Comodo. "It is our hope that with these set of tests, users can be better informed about the state of their PC security and deliver this vital feedback back to their security providers. This is how we hope these tests will help drive better security solutions - industry wide."
The new Comodo HIPS and Firewall Leak Test Suite can be downloaded from the Comodo website at: http://personalfirewall.comodo.com/cltinfo.html
About Comodo
The Comodo companies provide the infrastructure that is essential in enabling e-merchants, other Internet-connected companies, software companies, and individual consumers to interact and conduct business via the Internet safely and securely. The Comodo companies offer PKI SSL, Code Signing, Content Verification and E-Mail Certificates; award winning PC security software; vulnerability scanning services for PCI Compliance; secure e-mail and fax services.
Continual innovation, a core competence in PKI, and a commitment to reversing the growth of Internet-crime distinguish the Comodo companies as vital players in the Internet's ongoing development. Comodo secures and authenticates online transactions and communications for over 200,000 business customers and 3,000,000 users of our desktop security products.
For additional information on Comodo - Creating Trust Online™ visit http://www.comodo.com
For more information, reporters and analysts may contact:
Judy Shapiro
Comodo
+1 (201) 963-9471
Email: judy.shapiro@comodo.com
|
Company: COMODO
| Related press releases |
Comodo Continues To Demonstrate Its Commitment To Secure All PCs With A New Suit... [2008-04-18 11:23:00]
New application can help technical community expose virus threats such as rootkit installations, commonly overlooked by many other testing tools
Jersey City, NJ (April 18, 2008) - Comodo, a leading...
|
|
"Testmypcsecurity.com" Provides First Independent, User Driven Testing Resource ... [2008-03-19 11:15:14]
Testing Resource is Part of Comodo's Trusted Internet initiative to secure PCs for free for all online users
Jersey City, NJ (March 19, 2008) - Today, Comodo, a leading security company, announced ...
|
|
Comodo Email Certificates are Vista and Firefox Compatible [2007-07-25 23:51:04]
Comodo Email Certificates are Vista and Firefox Compatible
New compatibility makes these Email certificates available to many new users and remains free of charge
Jersey City, NJ (July 26, 2007) -...
|
|
Comodo releases BOClean 4.23, formerly by Privacy Software Corporation (PSC) [2007-04-25 07:07:26]
New version provides robust malware protection as part of Comodo's strategic initiative to secure the desktop for free
Jersey City, NJ (April 24 , 2007) - Comodo, a global Certification Authority a...
|
|
Comodo To Launch New Web Host Initiative Helping Partners Profit From High Deman... [2008-07-23 09:10:15]
Comodo unveils new high margin solutions such as Unified Communications Certificates, PCI compliance products and EV SSL technologies in combination with new platform enhancements for Web Hosts
Jer...
|
|
Comodo Introduces Trustconnect, A New Service That Helps Keep User Information S... [2008-05-29 10:40:33]
TrustConnect delivers a flexible, secure approach to surfing the Internet that lets users create a Virtual Private Network whenever they need it.
Jersey City, NJ (May 29, 2008) - Comodo, a leading ...
|
|
Merchant-Accounts.ca and Comodo Announce Strategic Partnership To Deliver PCI Co... [2007-08-27 22:05:42]
Merchant-Accounts.ca and Comodo Announce Strategic Partnership To Deliver PCI Compliance and Web Vulnerability Scanning to Its Canadian Customers
Innovative Canadian Merchant Account Provider Chooses...
|
|
Endpoint Security Manager from Comodo Saves Time, Money [2008-09-25 09:41:04]
Comodo Offers to Secure 5 Endpoints Free for Trial
Jersey City, NJ, September 25, 2008 - Comodo Security Solutions, a leading internet security company, announced today that its scalable Endpoint S...
|
|
Comodo Announces Agreement with SWsoft to Deliver Well-Rounded Portfolio of Infr... [2007-09-16 12:53:44]
JERSEY CITY, N.J., September 14, 2007 - Comodo, a global Certification Authority, today announced they have entered into an agreement whereby SWsoft will become a reseller of Comodo security solutions...
|
|
Comodo & VeriSign go head to head [2005-06-14 00:00:00]
Comodo The only High Assurance SSL certificate authority with growth over the last 9 months.
New York, 14th June 2005. Comodo Inc., the world's second largest High Assurance Certification Authority...
|
|
|
|
| Time Boss |
 Transcendent award-winning parental control software. Time Boss gives You an ability to manage exactly what, when and how long other user can do on the computer and offers adjusted powerful tools combining with user-friendly multilingual interface. |
|
| DynaPlot |
 DynaPlot is a real-time ActiveX chart control for technical applications. It features dynamic scaling of chart elements with control size, tolerance masks, built-in tools like cursors, markers, scroll, pan, zoom... |
|
| Nidesoft DVD to iPod Suite |
 Nidesoft iPod Converter Suite is the best iPod MP4 video conversion tool which includes two excellent iPod converters: DVD to iPod Converter and iPod Video Converter, help you rip DVD and convert video to iPod Video and the new iPod Nano/Touch/Class |
|
| Hex Workshop |
 Hex Workshop is a set of hexadecimal development tools for Windows that combines advanced binary editing with the ease and flexibility of a word processor. |
|
| Capture Professional |
 Captures images and video from anywhere on your screen. Its assistant guides you through the capture process. Its built-in editor uses 60+ effects and operations, drawing tools (w/ colors, textures, gradients, effects) and macros. |
|
| Smart Bro |
 Smart Bro is a free browser designed carefully to suite the user needs. It is built on the Internet Explorer technology. Smart Bro provides many options including:
1. Tabbed interface.
2. Integrated form filler
3. Popup killer. |
|
| Selkie Rescue Data Recovery |
 Computer crash nightmare? Get the best file migration and data recovery software for under $100. Selkie Rescue Data Recovery is do-it-yourself fast data recovery for your PC or laptop. Simple secure software for recovering all your files. |
|
|
Latest press releases
