The Qihoo 360 backdoor Midao surfaced


Chinese-style Apples


The independent investigators deliberately installed in a virtual machine for testing full Qihoo 360 products, and thus found 360 products, many do not behave behavior ", he readily publish these findings microblogging immediately drew a lot of attentionbut has also been some attacks."Some people obviously is of Qihoo 360 people in provocative, it angered me, I do not like to pay lip service, software professionals, I talk about the evidence," independent investigators so said.

Independent investigators found a very abnormal situation, Qihoo 360 browser network communication, "the most just found its Time cyclical: every five minutes, the browser will initiate the communication process between the time with the server, although it does not knowdoing, but its short the cyclical very suspicious. "

Why not open any page and does not move the keyboard and mouse, Qihoo 360 browser still too busy to do? "All domestic and foreign well-known browser does not exist such a pattern of behavior can be sure, there is a world there must be something wrong".

Thus, on October 29 last year through the microblogging announced the the Qihoo 360 browser backdoor fact.

The independent investigators Direct scolded: "The company's '360 Qihoo 360 security browser 'hidden' back door ', is a serious potential threat to the user system security and information security.

"By process of elimination, the final confirmation is the extended component SmartWiz in dirty tricks. Delete it, the browser on the quiet that one five minutes Upload assigned activities disappear."

However, it is not over yet.To further check minch Tiger 360 backdoor truth, independent investigators need to reverse compile assembly code and tracking test.

Independent investigator to master the 360 browser in SmartWiz entire assembly to establish communication between Qihoo 360 server, download, temporary storage, perform load, and delete (destruction of evidence) of the process through a series of technical processes, but also know its clock control scheduling mechanism (5-minute interval timer).

Maybe you like:

  1. Qihoo 360 black box appeared: the alleged secret operations on the user's personal information The crack of the illegal operation of Qihoo 360 security guards is a lot of fun cat-and-mouse thing. Independent investigators claimed that he has the basic crack the mystery of the Board of Qihoo 360 security guards, but away from the release is still too early ", because he had to do things of iron nails....
  2. Qihoo 360 black box mystery: Qihoo 360 "cancer" genes Secret February 25, one month ago, all Qihoo 360 APPs were downloaded by Apple Inc. Prior to Qihoo 360 CFO went to the United States "abject apology", but Qihoo 360 products are not back on the shelves....
  3. "security" trap behind the Qihoo 360 security products after a hacker indiscriminate bombing of Qihoo 360 server, Qihoo 360 line of defense was breached, spewing out a large number of user privacy data stored on its servers, Google search crawler automatically crawl and announcementsworld. Qihoo 360 years claimed user privacy than days "lie officially debunked....
  • Qihoo 360: Internet "goldenrod"
  • The Qihoo 360 backdoor: kidnapping user remote control
  • Qihoo 360 backdoor Shame of security
时间:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)