Mitigating DLL Hijacks Revealed in Vault 7

Any other tech-related topics
Post Reply
Message
Author
User avatar
joby_toss
Posts: 2991
Joined: Sat Feb 09, 2008 9:57 am
Location: Romania
Contact:

Mitigating DLL Hijacks Revealed in Vault 7

#1 Post by joby_toss »

http://portableapps.com/news/2017-03-13 ... m-platform
John T. Haller wrote: Mitigating DLL Hijacks Revealed in Vault 7/Fine Dining With The PortableApps.com Platform

Over the past few days, Wikileaks posted a series of documents purported to be from the CIA in a dump of files dubbed "Vault 7". Within those documents are references to a project called "Fine Dining" which details how a field agent can alter their own software on a portable device to include additional functionality to enable spying and other covert activities while appearing innocuous to those who happen to see the agent using their portable software. The process is detailed well in a Q&A by Sophos software.

List of Affected Software

The list of affected software includes VLC Player Portable, Irfan View, Chrome, Opera, Firefox, ClamWin, Kaspersky TDSS Killer, McAfee Stinger, Sophos Virus Removal Tool, Thunderbird, Opera Mail, Foxit Reader, LibreOffice, Prezi, BabelPad, Notepad++, Skype, Iperius Backup, Sandisk Secure Access, U3 Software, 2048, LBreakout2, 7-Zip Portable and Portable Linux CMD Prompt. Some PortableApps.com Launchers are also affected by these techniques.
http://portableapps.com/news/2017-03-13 ... 4-released
John T. Haller wrote:PortableApps.com is proud to announce the PortableApps.com Platform 14.4 release. This release adds custom platform security to scan for and mitigate DLL hijacks in some vulnerable apps and launchers revealed in the "Fine Dining" leak as well as updates to two locales.

Post Reply