New Worm
#2
Imagine my surprise when the exchange virus checker caught it before I'd even had a chance to see the thing! Taking all the fun out of things nowadays, I can't even see the rather purile attempts at code obfuscation that the kiddies are thinking is so clever...
Do the heuristics now recognise an obfuscation routine in an attachment? I am starting to suspect that they do.
Keep up the good (if boring for us) work
Do the heuristics now recognise an obfuscation routine in an attachment? I am starting to suspect that they do.
Keep up the good (if boring for us) work
#3
Scooby Senior
Thread Starter
I won't go into detail but your right. The majority of the samples we recieve nowadays are detected by our Heuristic/Generic routines before they're written. We're having to tread a very fine line between detection and false positive but seen to be winning.
#5
Scooby Senior
Thread Starter
I belive we only send to SecureCast immediately if it hits high risk, I was woken with this one at medium risk early... very early... this morning, mainly down to the FBI's interest.
Thread
Thread Starter
Forum
Replies
Last Post
Jeff Wiltshire
Computer & Technology Related
2
25 January 2003 09:53 PM