Emsisoft Internet Security

Emsisoft Internet Security
Antivirus & Anti-Malware & Firewall, all-in-one. For some time now, our clients have been expressing the desire to have Emsisoft Anti-Malware and Emsisoft Online Armor combined into one single interface. Emsisoft Internet Security combines the best of both worlds and completes Emsisoft Anti-Malware with a new efficient firewall core that is as powerful as the one found in Emsisoft Online Armor's but doesn't cut back on usability.

Δευτέρα, 27 Απριλίου 2015

How Kaspersky makes you vulnerable to the FREAK attack and other ways Antivirus software lowers your HTTPS security - Hanno's blog

How Kaspersky makes you vulnerable to the FREAK attack and other ways Antivirus software lowers your HTTPS security - Hanno's blog 



Lately a lot of attention has been payed to software like Superfish and Privdog
that intercepts TLS connections to be able to manipulate HTTPS traffic.
These programs had severe (technically different) vulnerabilities that
allowed attacks on HTTPS connections.



What these tools do is a widespread method. They install a root
certificate into the user's browser and then they perform a so-called
Man in the Middle attack. They present the user a certificate generated
on the fly and manage the connection to HTTPS servers themselves.
Superfish and Privdog did this in an obviously wrong way, Superfish by
using the same root certificate on all installations and Privdog by just
accepting every invalid certificate from web pages. What about other
software that also does MitM interception of HTTPS traffic?



Antivirus software intercepts your HTTPS traffic



Many Antivirus applications and other security products use similar
techniques to intercept HTTPS traffic. I had a closer look at three of
them: Avast, Kaspersky and ESET. Avast enables TLS interception by
default. By default Kaspersky intercepts connections to certain web
pages (e. g. banking), there is an option to enable interception by default. In ESET TLS interception is generally disabled by default and can be enabled with an option.

Δεν υπάρχουν σχόλια:

All about Microsoft

Latest news and stories from BleepingComputer.com

Share