I was thinking, mbam, have you got other suggestions for Windows 10? Also, is there a good setup for when I’m running games I bought, and I don’t need active scanning of threats? (Especially for legit games that use resources intensively)
Either you’re just ignorant or your working in the Russian malware industry.
Remote exploits doesn’t have anything to do with you running any infected executables. It’s about vulnerabilities in executables that you are running. Read up on the zx vulnerability or the log4j vulnerability.
One really really old attack vector is a buffer overflow attack. For example, if you’re running a clean VLC to watch a movie and your VLC is older than version 3.0.12 you’re at risk. The video file, that you “purchased” on PirateBay, could have been manipulated to crash VLC and force VLC run a specific payload in the video file. If that payload is ransomware it’s game over for you.
Yeah, just like wearing a seatbelt doesn’t guarantee that you don’t get injured, antivirus doesn’t guarantee that your computer won’t get infected.
But there’s no doubt about the usefulness of both seatbelt and antivirus.
The liblzma vulnerability does not have have anything to do with antivirus. Running antivirus doesn’t help with that. Same goes for log4j. The liblzma and log4j vulnerabilities didn’t get detected by antivirus and it didn’t help prevent it. Remote exploits can also only happen if you either have some service exposed to the internet or visiting a malicious website with a vulnerable browser. Antivirus can only prevent scriptkiddies but any sophisticated malware will just bypass av
I explained what a remote exploit was and gave examples of remote exploits.
Are you claiming that antivirus isn’t able to detect malware entering through an remote exploit?
Antivirus is not what’s stopping g remote exploits. For a remote exploit to work you either have to expose ports to the internet (port forwarding) and run a vulnerable service on said port or visit a malicious website with a vulnerable browser. Antivirus won’t protect you from more than a scriptkiddie regardless of whether or not it is a remote exploit
