Qihoo 360 backdoor Shame of security

Chinese-style Apples

Qihoo 360 security browser design out the back door, precisely gives users a great deal of insecurity.

General individual user's computer, more than 90% of the contact between the windows system, this system and the Internet, you need to achieve, at the same time, because between the browser closed loop windows system and the Internetnatural barrier to any instructions from other cloud does not penetrate this layer of protection to reach the windows system. In this way, the windows system in the user's computer to get the best protection, all instructions executed are from the user.

Qihoo 360 browser through the back door, according to the monitor user computer operating process to Qihoo 360 Cloud Security Center issued a request Qihoo 360 cloud the backdoor service system based on the request, given the appropriate DLL that windowsexecutable program library.This DLL through the back door of Qihoo 360 browser directly into the user's windows system.

At this point, the DLL exceedingly amazing, it even has control of the browser from user windows system, it can do things, including but not limited to:

Get the user's files, and upload it to the cloud;

Read and write, add and delete user files;

Monitor user communications;

Change the windows system registry, or important to set the parameters;

Quietly uninstall the competitors' products, and so on.

The same time, the DLL can also be through the back door, directly on the Internet, issued a directive, including but not limited to:

Automatic from Qihoo 360 server download software to install or run;

Instead of the user directly to e-commerce operation;

The release of a Trojan horse or virus, to create a permanent system of services, and so on.

A minor detail, independent investigators in order to allow more users to know Qihoo 360 hidden backdoor fact, but also the results of its investigation by 65 minutes of uninterrupted video full webcast.To ensure that the video content is truly 65 minutes of uninterrupted, splicing, In fact, he spent more than four hours again and again realistic demo until disposable completed, has truly accomplish this forensic work.

Independent investigators pointed out that, the executable DLL is definitely not automatic software updates (software updates persistence), Qihoo 360 security browser automatically updated only in the startup time has nothing to do with this behavior; while it is not the browserpart, download, temporary loader calls will be removed immediately after completing their missions, without leaving any traces.

Maybe you like:

1. The Qihoo 360 backdoor Midao surfaced The independent investigators deliberately installed in a virtual machine for testing full Qihoo 360 products, and thus found 360 products, many do not behave behavior ", he readily publish these findings microblogging immediately drew a lot of attentionbut has also been some attacks."Some people obviously is of Qihoo 360 people in provocative, it angered me, I do not like to pay lip service, software professionals, I talk about the evidence," independent investigators so said....
2. Qihoo 360: Internet cancer cells "If you have cancer, your first reaction is what?" Independent investigators asked back, "it must have to get it cut away! 360 is a malignant tumor of the network society, this tumor is not removed, not only the Chinese Internet community Wing No date of tranquility, the entire Chinese are never the peace of the day. "...
3. Qihoo 360 black box appeared: the alleged secret operations on the user's personal information The crack of the illegal operation of Qihoo 360 security guards is a lot of fun cat-and-mouse thing. Independent investigators claimed that he has the basic crack the mystery of the Board of Qihoo 360 security guards, but away from the release is still too early ", because he had to do things of iron nails....

• Qihoo 360: Internet "goldenrod"
• The Qihoo 360 backdoor: kidnapping user remote control
• Qihoo 360 backdoor Shame of security