What about the elephant in the room … “suggesting the possibility that a known, unpatched vulnerability in Microsoft Exchange may have been used to gain access to victim networks in some cases”. As long as you download VLC from the official website (or a trustworthy site), your computer should be safe from malware, because it does not contain the malicious DLL File used in these attacks… Therefore, please remember that every user. So it is evident there are at least two different requirements for this attack to happen: a compromised system, and a modified version of VLC (among the other tools that were used)… VideoLAN is free and open source software and is not backed by any company. Here, we recommend 5KPlayer as the best free VLC alternative. In general, the open source VLC media player program is safe to run on your system however, certain malicious media files may try to use bugs in the. Uninstall VLC media player and try VLC media player alternative to prevent VLC not safe issue. It supports most audio/video formats, DVDs and CDs, and various streaming protocols. ![]() This file is located in the same folder as the export function’s path, and is used by the attackers to launch a custom malware loader. VLC has claimed that version 3.0.4 has fixed the security issues along with the fix of hardware decoding issue, support for AVI stream and improve the compatibility with numerous formats. VLC is a powerful all-in-one, open-source, cross-platform media player. They said that some hackers took the clean version of VLC, added a malicious DLL file to it and distributed it, aka DLL side-loading. This was confirmed by a member of Symantec’s Threat Hunter Team, in a statement released to Bleeping Computer. The second section of the report (highlighted in the image) mentions that attackers needed access to the victim machines, before they could launch the malware attack. The rest of the report should be taken into context. This is not correct, VLC is not the reason for the malware attacks like these websites allege. This statement’s wording is quite confusing, and was misinterpreted by some blogs, who wrote that VLC is vulnerable and that hackers are using it to launch malware attacks. “The attackers also exploit the legitimate VLC Media Player by launching a custom loader via the VLC Exports function, and use the WinVNC tool for remote control of victim machines.” Symantec’s Security Threat Intelligence blog mentions the following statement. One of these tools is a modified version of the popular open source media player, VLC. VLC Media Player is hugely popular, and for good reason its completely free, supports almost all file formats without the need to download additional codecs, can optimize video and audio. Hackers distributed a modified version of VLC to use it for triggering a custom malware loader ![]() This page is part of the informal VLC Support Guide. Remember to press Save to save VLC settings and restart VLC after that to make sure changes are enabled. Navigate to Tools -> Preferences -> Input&codecs and Record directory or filename. Ghacks : Symantec says that hackers distributed a modified version of VLC and exploited it for malware attacks This page describes how to specify the folder where the recorded files (via red rec button) will be stored.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |