Norton Internet Security logo

Security Update 658 for Norton Internet Security

Jul 25, 2012

Security Updates give the most recent protection content for Norton Internet Security, which protect networked critical systems and remote and mobile users from unwanted network intrusions and hackers, as well as from viruses, Trojans, and worms.

To download and install the Security Update 658 you need to run LiveUpdate feature of Norton Internet Security product. Please note that LiveUpdate definition identifier of Security Update 658 is 20120724.001 and its description was last modified on July 24, 2012 4:54:12 PM PDT.

Security Update 658 adds coverage for the following vulnerabilities and threats:

  • Web Attack: Exploit Toolkit Website 10:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.

  • System Infected: Spadenf Trojan Activity:
    This signature detects W32.Pilleuz HTTP activity.

  • Web Attack: Blackhole Toolkit Website 20:
    This signature detects attempts to download exploits from Blackhole toolkit that may compromise a computer through various vendor vulnerabilities.

  • System Infected: Bebloh Trojan Activity 2:
    Bebloh is a Trojan horse that modifies security settings in Internet Explorer.

  • Web Attack: Exploit Kit Redirect 2:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.


Security Update 658 provides updated coverage for the following vulnerabilities and threats:
  • Web Attack: Blackhole Toolkit Website 2:
    This signature detects attempts to download exploits from Blackhole toolkit that may compromise a computer through various vendor vulnerabilities.

  • Fake App Attack: Fake AV Redirect 21:
    A Web based attack relating to misleading applications has been blocked. No further action is required, but you may wish to update your virus definitions and run a full system scan as a precautionary measure.

  • Fake App Attack: Fake Scan Webpage 4:
    A Web based attack relating to misleading applications has been blocked. No further action is required, but you may wish to update your virus definitions and run a full system scan as a precautionary measure.

  • Malicious Site: Suspicious Request:
    You have attempted to visit a known malicious IP address. Visiting this web site could potentially put you at risk to becoming infected. Symantec's Network Threat Protection solution has prevented any potential infection attempts from occurring. You should not have to take any additional actions and are safe from infection. It is recommended that you do NOT visit this site.

  • Web Attack: Exploit Toolkit Website 5:
    This signature detect attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.

  • Web Attack: Mass Injection Website 2:
    It is an attack where an iframe which points to a malicious site is injected in large number of clean websites.


Symantec Corporation
www.symantec.com

0 comments: (+add yours?)

Post a Comment

Note: Only a member of this blog may post a comment.