Printer Friendly
The Free Library
4,488,776 articles and books
Member login
User name  
Password 
 
Join us Forgot password?

GFI email exploit engine. (Virus Notes).


GFI MailSecurity for Exchange/SMTP, GFI's new email security package, includes a revolutionary email exploit engine which detects exploits embedded in emails and shields users against any current or future email viruses and attacks that use known exploits.

Comment:

Why email exploits are dangerous

An exploit uses known vulnerabilities in applications or operating systems to execute a program or code; it "exploits" a feature of a program or the operating system for its own use, such as to execute arbitrary machine code, read/write files on the hard disk, or gain illicit access. An email exploit is an exploit embedded in an email that can be executed on the recipient's machine once the user opens or receives the email. This allows a hacker to bypass most firewalls and anti-virus products.

Protection against unknown email viruses and malicious code

Anti-virus software is designed to detect known malicious code. An email exploit engine takes a different approach: it works like an intrusion detection system (IDS) for email and analyses code for exploits that could be malicious. This means it can protect against new viruses, but most importantly against unknown viruses/malicious code. This is crucial as an unknown virus could be a one- off piece of code, developed specifically to break into an organization's network, and therefore might not be recognized by anti-virus engines.

Blocking Nimda, BadTrans.B, Klez.H in one go & their variants

The Nimda, BadTrans.B and Klez. H viruses all use the same exploit to propagate. Yet, when the BadTrans.B virus emerged, those who had anti-virus protection against Nimda were defenceless against it and needed a new virus definition file update to block it. Again, when Klez. H appeared, anti-virus vendors had to issue another new update to protect against that. Yet, the time taken to release a signature against each new threat is long enough for a network to be infected.

GFI's email exploit detection engine recognizes the exploit used and can block all three worms--and any variants--immediately and automatically, without the, need for definition file updates. GFI Security Labs conduct research in the hacker community to identify new exploits and incorporate them in the GFI MailSecurity exploit engine. www.gfi.com

COPYRIGHT 2002 A.P. Publications Ltd.
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2002, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

 Reader Opinion

Title:

Comment:



 

Article Details
Printer friendly Cite/link Email Feedback
Publication:Database and Network Journal
Date:Aug 1, 2002
Words:366
Previous Article:New Anti-Virus solution for MS Exchange. (Virus Notes).(Kaspersky Anti-Virus for MS Exchange Server 5.5/2000)
Next Article:Encryption Plus Hard Disk V7.0. (Virus Notes).
Topics:



Related Articles
Nimda - how it works. (VIRUS NOTES).
GFI Mail essentials for Exchange 7. (Internet Products).(GFI)
One virus engine not enough! (Security).
GFI Download Security for ISA Server. (News and Products).(Brief Article)
Internet virus alert: Central Command warns all email users of a fast spreading Internet worm named Worm/MiMail.A.(Brief Article)
MyDoom-0 computer worm spreading quickly.(News)(Brief Article)
Infosecurity Europe 2005.(CONFERENCE CLIPPINGS)
New virus diguised as Saddam Hussein death.(Security)
Sunbelt Software announces third-generation "all-in-one" messaging security.(Security News and Products)
MailEssentials and MailSecurity: GFI Software.(New Products: THE LATEST OFFERINGS IN BOOKS, HARDWARE, INTERNET AND SOFTWARE)

Terms of use | Copyright © 2008 Farlex, Inc. | Feedback | For webmasters | Submit articles