« TechEd 2007 - Day 4 | Main | So that was TechEd 2007 »

November 16, 2007

All your anti-virus are belong to us

Dear all,

Sorry for the slightly strange title, I’m sure some of you get it. If not, click here. Today is the last day of TechEd and I am happy to say that it has been brilliant. An absolutely fantastic session by Laura Chappell this morning on network forensics and then a follow up security panel discussion with Laura and more top MS and non-MS security professionals. This was my biggest shock of the day:


During a routine threat analysis of anti-virus programs, some open source Trojan source code was downloaded from the web. It was then compiled and several scan engines were used on the binary. None of the engines picked up the Trojan, even though it was a well known threat.


The reason?


This binary had been compiled with Delphi 2005 and the original virus writer had used a previous version. Therefore the signature didn’t match.


I’ll leave you with that, and finish by saying goodbye for now and I hope to see a bit of Barcelona tonight as we finish early at 4:30pm and it will still be light.

Posted by Matthew White on November 16, 2007 at 12:33 PM in Web/Tech |

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00e008c6529d883400e54f98380f8834

Listed below are links to weblogs that reference All your anti-virus are belong to us:

Comments

Verify your Comment

Previewing your Comment

Posted by:  | 

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Post a comment