I recently read an article at tech target that some RAT trojans that open in 'sandboxes' and vm's are now getting thru and onto the computers. I have heard this also from a windows security expert, but no one has said if it is only for some vm's or stated which software.
Is it fair to say that vmbox is not impervious to RAT trojans getting through onto the host os when opening an email that auto-executes just upon opening the email, as I have had this happen to me numerous times?
Wondering if vmbox has done anything to counter this.
Thanks.
RAT GETTING THRU VMBOX & OTHER VM'S
-
mpack
- Site Moderator
- Posts: 39134
- Joined: 4. Sep 2008, 17:09
- Primary OS: MS Windows 10
- VBox Version: VirtualBox+Oracle ExtPack
- Guest OSses: Mostly XP
Re: RAT GETTING THRU VMBOX & OTHER VM'S
I don't keep up with fashion trends in malware hysteria, but until someone actually demonstrates what the viable mechanism would be, I'll stand by the assertion that there is no way for any kind of malware inside the guest to affect the host. Vague rumours from dubious sources notwithstanding.
The only way the host can be affected is with user help: e.g. copy an infected executable to a vulnerable host, and run it there.
The only way the host can be affected is with user help: e.g. copy an infected executable to a vulnerable host, and run it there.
-
noteirak
- Site Moderator
- Posts: 5231
- Joined: 13. Jan 2012, 11:14
- Primary OS: Debian other
- VBox Version: OSE Debian
- Guest OSses: Debian, Win 2k8, Win 7
- Contact:
Re: RAT GETTING THRU VMBOX & OTHER VM'S
@OP any real reference to this? exploit source? security note? something?
Hyperbox - Virtual Infrastructure Manager - https://apps.kamax.lu/hyperbox/
Manage your VirtualBox infrastructure the free way!
Manage your VirtualBox infrastructure the free way!