Malwarebytes Anti-Exploit product claims to prevent zero-day exploits

[ranchhand]

If it works as advertised, Malwarebytes Anti-Exploit would be remarkable for preventing zero-day vulnerabilities -- previously unknown, unpatched software flaws -- from being exploited to steal data or gain control of your computer. Exploits that launch malicious code on your computer, known as remote code execution, combined with zero-day flaws have been successful in targeting massive multinational corporations, financial institutions, and critical infrastructure, as well as private individuals.

Remember the Windows XP bug earlier this year that was so dire the US and UK governments warned people to stop using Internet Explorer? That involved a zero-day vulnerability.

Pedro Bustamante, director of special projects at Malwarebytes, said that even the beta version of Anti-Exploit that's been available for the past year has had a nearly flawless record.

"Not a single zero-day has gotten through since the first beta, which let three vulnerabilities through. Even year-old versions" have protected against exploits attempting to use new zero-days, he said.

The beta has been running with "tens of thousands" of users, Kleczynski said.

He explained the difference between Anti-Exploit and his company's flagship product, Malwarebytes Anti-Malware: where Anti-Malware stops the final payload at the end of the attack, Anti-Exploit plugs up the way that payload gets delivered.

http://www.cnet.com/news/malwarebytes-finally-unveils-freeware-exploit-killer/#ftag=CAD590a51e

[ranchhand]

Just a follow up.... I have installed MA-E and so far no conflicts or crashes. Is it actually working? I don't know, I'm assuming it will have some type of notice from a prevented attack. Hijack this reports it as running.

[deadrats]

thanks for the head up, if it works it would be great.

of course there's a very easy way to make sure that no virus would ever run on windows, all MS would have to do is make it so that all applications run in their own sandbox, just like sandboxie does or Solaris used to (i don't know if it still does).

MS could easily produce a virus proof OS, the thing that prevents them from doing so is that a) they want the OS to have lots of api functionality in order to attract a wealth of software and b) they design the OS in such a way that it has many hooks to allow anti-piracy measures implemented by developers to work. designing the OS to be virus proof would also top all that in its tracks.