Bugbatter
6 Gallium

Symantec and PIFTS.EXE

Mystery of the Day:
http://www.sophos.com/blogs/gc/g/2009/03/10/mystery-symantec-pifts/
http://isc.sans.org/diary.html?storyid=5992

 

From Bleeping Computer's Analysis:

http://www.bleepingcomputer.com/forums/topic210051.html


Windows Insider MVP 2016 -

Microsoft MVP - Consumer Security 2006-2016

Social Media and Community Professional

0 Kudos
4 Replies
Bugbatter
6 Gallium

Re: Symantec and PIFTS.EXE

 

With parts of the internet flustering over the Symantec / PIFTS.EXE debacle, hackers have set out to poison search engines in an attempt to cash in on unsuspecting computer users.

We're seeing evidence that websites containing malware are showing up in search engine results when people hunt for more information about PIFTS. Sophos's WS1000 Web Appliance is already picking up some of these sites as Mal/BadRef-A, and preventing users from accessing them.

http://www.sophos.com/blogs/gc/g/2009/03/10/malware-authors-jump-piftsexe-bandwagon/


Windows Insider MVP 2016 -

Microsoft MVP - Consumer Security 2006-2016

Social Media and Community Professional

0 Kudos
joe53
5 Tungsten

Re: Symantec and PIFTS.EXE

"So, all in all, pifts.exe is nothing but a huge PR blunder by Norton. Here they are, a computer security products company, and they are sending information to a remote computer without your knowledge or permission. When users find out about it, instead of answering their queries, they make the mistake of deleting them. Without a doubt we will be hearing from Norton soon regarding this program and I am sure it will be nothing more than a stupid mistake on their part. Only time will tell."
- Grinler http://www.bleepingcomputer.com/forums/index.php?showtopic=210051&view=findpost&p=1172092

 

Ouch!

My sympathies to Norton users. It's not getting much good press lately ...

_________________________________________


Dell Forum Member since 2,000


 Use OpenDNS   MalwareBytes' Anti-Malware Free


Windows 7/sp1 (64- Bit): Malwarebytes 3.x Premium, Windows Firewall, WinPatrol PLUS, Emsisoft Emergency Kit Free and HitmanPro Free (on-demand scanners), OpenDNS, MVPS Hosts file, SpywareBlaster, Pale Moon web browser, Sandboxie, CCleaner Free.


Windows 10 Pro (64- Bit): Same protection plus Windows Defender AV.


"In the future, everyone will be anonymous for 15 minutes" - Banksy

0 Kudos
Bugbatter
6 Gallium

Re: Symantec and PIFTS.EXE

Symantec's Reply:

http://community.norton.com/norton/board/message?board.id=nis_feedback&message.id=39119&query.id=286...


Windows Insider MVP 2016 -

Microsoft MVP - Consumer Security 2006-2016

Social Media and Community Professional

0 Kudos
joe53
5 Tungsten

Re: Symantec and PIFTS.EXE

Looks like damage control on Symantec's part to me.

I am (regretfully) with Corrine:

"The way things have been going, I will stay with my Recommendation: Replace Norton!"
http://securitygarden.blogspot.com/2009/03/norton-customers-beware-of-searches-for.html

 

_________________________________________


Dell Forum Member since 2,000


 Use OpenDNS   MalwareBytes' Anti-Malware Free


Windows 7/sp1 (64- Bit): Malwarebytes 3.x Premium, Windows Firewall, WinPatrol PLUS, Emsisoft Emergency Kit Free and HitmanPro Free (on-demand scanners), OpenDNS, MVPS Hosts file, SpywareBlaster, Pale Moon web browser, Sandboxie, CCleaner Free.


Windows 10 Pro (64- Bit): Same protection plus Windows Defender AV.


"In the future, everyone will be anonymous for 15 minutes" - Banksy

0 Kudos