Our server costs ~$56 per month to run. Please consider donating or becoming a Patron to help keep the site running. Help us gain new members by following us on Twitter and liking our page on Facebook!
Current time: March 18, 2024, 10:41 pm

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Protection From Malware (Windows Users)
#1
Protection From Malware (Windows Users)
I thought I would share a cool method that I use to protect myself from all instances of Windows malware. I have been using Microsoft Windows for over 18 years, and I very much doubt that I will ever upgrade from Windows 7 (not interested in touch screen technology AT ALL). Inside Windows, I use the virtualisation software "Oracle VirtualBox". Inside the virtual hard disk drive, I have installed Linux Mint (an outstanding distribution of Linux in my view), into which I have installed WINE, so that I can launch Windows applications from within the virtual instance of Linux Mint. It is extremely unlikely that a piece of Windows Malware will be able to perform operations outside of WINE, let alone getting beyond the virtual Linux Mint installation; the Windows 7 host will be 100% protected. If anybody uses software that is very likely to contain malware (such as serial generators et cetera), I strongly suggest this method.
Reply
#2
RE: Protection From Malware (Windows Users)



Generally running windows in a vm for vulnerable apps, only running trusted software, and keeping AV and programs patched is sufficient. You're overdoing things a tad, I think.


(Oh, and smart computing is more important than any gimmicks. Know what best practices are for safe computing and follow them. 90% of security failures are a result of human error. Any system badly configured, badly managed, and inadequately protected will be easy pickings.)


[Image: extraordinarywoo-sig.jpg]
Reply
#3
RE: Protection From Malware (Windows Users)
(April 26, 2013 at 2:23 pm)apophenia Wrote: Generally running windows in a vm for vulnerable apps, only running trusted software, and keeping AV and programs patched is sufficient. You're overdoing things a tad, I think.

I can see why you think that, and I partially agree. I used to believe that installing all available Windows updates, and installing standard security applications, such as AVG Internet Security Business Edition (which includes a decent firewall), offered extremely comprehensive protection. I also used to be a fan of Sandboxie, but even with all of this, infections were still creeping through. Are you aware of VirusTotal and Metascan Online? As a test, I uploaded a serial generator (which was not detected by my local installation of AVG) to these scanners, and the results were surprising. It was scanned by 40 virus scanners (AVG, Symantec blah blah) and it escaped virus detection on 50% of the scanners, obviously including AVG, hence my new found obsession with extreme security measures.

(April 26, 2013 at 2:23 pm)apophenia Wrote: (Oh, and smart computing is more important than any gimmicks. Know what best practices are for safe computing and follow them. 90% of security failures are a result of human error. Any system badly configured, badly managed, and inadequately protected will be easy pickings.)

I agree that smart computing is very important. However, I have found that this is definitely the safest method to confidently execute unsafe Windows applications.
Reply
#4
RE: Protection From Malware (Windows Users)
I've used a Linux VM for web browsing in the past. But knowledge is the best defense, IMO. I usually only run MSE for system security. Then again, I manage a Windows network with ~120 users, so they provide a fertile testing ground for learning how to best avoid a malware infection, as well as what steps to take when a machine becomes infected.
"Well, evolution is a theory. It is also a fact. And facts and theories are different things, not rungs in a hierarchy of increasing certainty. Facts are the world's data. Theories are structures of ideas that explain and interpret facts. Facts don't go away when scientists debate rival theories to explain them. Einstein's theory of gravitation replaced Newton's in this century, but apples didn't suspend themselves in midair, pending the outcome. And humans evolved from ape- like ancestors whether they did so by Darwin's proposed mechanism or by some other yet to be discovered."

-Stephen Jay Gould
Reply
#5
RE: Protection From Malware (Windows Users)
(April 26, 2013 at 2:44 pm)Tonus Wrote: I've used a Linux VM for web browsing in the past. But knowledge is the best defense, IMO. I usually only run MSE for system security. Then again, I manage a Windows network with ~120 users, so they provide a fertile testing ground for learning how to best avoid a malware infection, as well as what steps to take when a machine becomes infected.

What method would you use to safely "test" a piece of Windows malware without infecting the host machine? Also, at the organisation/company where you work, I would be interested to know the security measures that you undertake in terms of protection from malware. For example, it would be interesting to ascertain if enterprise antivirus applications are more comprehensive than the inadequate solutions available to the home user. The malware developers are becoming much smarter at avoiding detection with standard antivirus applications. However, to the best of my knowledge, they have not figured out how to break out of a virtual machine of a different operating system (i.e a Linux VM on a Windows host).
Reply
#6
RE: Protection From Malware (Windows Users)
[Image: over-protective+parenting+style.jpg]
Reply
#7
RE: Protection From Malware (Windows Users)
(April 26, 2013 at 3:10 pm)fr0d0 Wrote: [Image: over-protective+parenting+style.jpg]

[Image: fuck-you-oragutan.jpg]
Reply
#8
RE: Protection From Malware (Windows Users)
(April 26, 2013 at 2:55 pm)Love Wrote: However, to the best of my knowledge, they have not figured out how to break out of a virtual machine of a different operating system (i.e a Linux VM on a Windows host).

Have they figured out how to break out of a windows VM on a windows host?
Reply
#9
RE: Protection From Malware (Windows Users)
(April 26, 2013 at 3:34 pm)JesusHChrist Wrote:
(April 26, 2013 at 2:55 pm)Love Wrote: However, to the best of my knowledge, they have not figured out how to break out of a virtual machine of a different operating system (i.e a Linux VM on a Windows host).

Have they figured out how to break out of a windows VM on a windows host?

I think so, especially if the VM is sharing a drive or network connection with the host. I tested a piece of well known malware on a Windows 7 VM in a Windows 7 host, and it was also inside a sandboxed instance of WinRAR (in the VM). AVG, however, detected it on the host. The same piece of malware inside WINE on a Linux VM was not detected by AVG on the host, however. I very much doubt that malware developers will ever figure out how to break outside of a VM of a completely different operating system to the host. You could also try Solaris, Mac OS, OS/2 or BSD in the VM; I am sure there are plenty of open source applications that will allow you to execute Windows programs in these operating systems.
Reply
#10
RE: Protection From Malware (Windows Users)
But AVG detecting a virus inside a VM disk file is not the same as the host being forced to execute that code. How would the host run the infected code and become infected itself? Seems like there would need to be a flaw in the VM software itself. I also use virtualbox BTW.

I'll have to look into this as I thought windows within windows was a safe architecture.
Reply



Possibly Related Threads...
Thread Author Replies Views Last Post
  Windows defender has, once again, incorrectly identified my program as malware! FlatAssembler 36 547 February 22, 2024 at 9:29 pm
Last Post: The Valkyrie
  [Serious] Windows Movie Maker Help T.J. 6 670 November 29, 2021 at 1:46 pm
Last Post: AniKoferBo
  Windows Security plus Win 11 Oldandeasilyconfused 2 334 November 25, 2021 at 5:33 pm
Last Post: Oldandeasilyconfused
  Windows 11. Install it; Yes/ No/Wait Oldandeasilyconfused 24 2090 November 10, 2021 at 10:52 am
Last Post: popeyespappy
  Windows 11? Angrboda 29 2208 September 23, 2021 at 8:24 pm
Last Post: no one
  Anybody ever run Windows 10 on server hardware? popeyespappy 1 520 November 6, 2019 at 11:58 pm
Last Post: Jackalope
  Why isn't Android more serious contender to Windows? Fake Messiah 8 857 June 20, 2019 at 6:21 am
Last Post: Fake Messiah
  Getting a Windows 98 game to run on modern windows vulcanlogician 23 2087 January 19, 2019 at 7:09 am
Last Post: LastPoet
  HELP! The Page Breaks in All My Documents Have Disappeared in Windows 2013 Rhondazvous 18 3742 January 9, 2018 at 8:44 pm
Last Post: Mermaid
  Windows 10 Running Slow A Theist 30 7848 June 2, 2017 at 5:46 am
Last Post: Joods



Users browsing this thread: 1 Guest(s)