Duis mollis, est non commodo luctus, nisi erat porttitor ligula, eget lacinia odio sem nec elit. Sed posuere consectetur est at lobortis. Vestibulum id ligula porta felis euismod semper. Donec ullamcorper nulla non metus auctor fringilla. Aenean lacinia bibendum nulla sed consectetur. Cras justo odio, dapibus ac facilisis in, egestas eget quam. Cras mattis consectetur purus sit amet fermentum. Morbi leo risus, porta ac consectetur ac, vestibulum at eros. Sed posuere consectetur est at lobortis. Etiam porta sem malesuada magna mollis euismod. Cum sociis natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus. Duis mollis, est non commodo luctus, nisi erat porttitor ligula, eget lacinia odio sem nec elit. Cras justo odio, dapibus ac facilisis in, egestas eget quam. Aenean eu leo quam. Pellentesque ornare sem lacinia quam venenatis vestibulum. Curabitur blandit tempus porttitor. Sed posuere consectetur est at lobortis.
Hello,
I contacted one of the the community staff (Tim), but he asked me to post this here in public, that's what I will do now:
I compared several new versions of different anti-virus programs.
I noticed, that some programs does detect some "iframe" threats, some doesn't.
Norton is one of the products, which doesn't detect this kind of threats.
I don't post links to some example sites, but I saved one site and uploaded it to virustotal.com. Here's the result:
http://www.virustotal.com/en/analisis/0f3feb726caf1f210c5bc3b0a437db83
My question is very simple:
- Doesn't Norton know these kind of threats - so I am not protected?
- Are other anti-virus products are overacting (false detection; making unnecessary noise)?
Regards,
Igor
Hello,
I uploaded the example.
Tracking #9985472
Hi Igor
We absolutely do provide coverage for malicious iframes. We generally detect these as "Downloader" as they typically attempt to download a another threat. The iframe you reference below appears to be once we haven't seen before. Could you please submit this sample to us so that we can add detection for it? You can do this here.
In addition to antivirus detections we also protect users against malicious iframes via our "Browser Defender" feature. Whenever a user visits a malicious/compromised site, Broswer Defender will block the iframe from exploiting a vulnerability in order to download another threat.
Thanks and regards
Orla Cox
Symantec Security Response