Video Screencast Help
Protect Your POS Environment Against Retail Data Breaches. Learn More.

Does the Symantec prevent and block "Poison IVY Bacdoor"

Created: 25 Nov 2011 | 6 comments

Dear Guys,

 

         we are currently using symantec endpoint protection through endpoint protection manager, Recently i seen that new virus or malware called "Poison IVY backdoor" (The Nitro Attacks) is sperading very fast through e-mail and other ways around. I gone through symantec website and i could not see anything like symantec will block and prevent mentioned virus, please let me know does symantec do prevent and blocking the virus?

and give me tips to prevent from this virus................ I wish you to go through below link.

http://www.symantec.com/content/en/us/enterprise/m...

Comments 6 CommentsJump to latest comment

Mithun Sanghavi's picture

Hello,

I believe you already read the Whitepaper on the "The Nitro Attacks". I surely proves and answers your own Question.

Prevention is always in your hands by making sure you have Latest Symantec Endpoint Protection Installed with the Latest and Updated Virus Definitions and recommended Features on your machines to protect you against such Threats.

I am sure you are completely protected by Symantec.

Here are few Reports to prove.

http://safeweb.norton.com/report/show?url=poisonivy-rat.com

http://www.threatexpert.com/threats/backdoor-win32-poisonivy.html

http://www.symantec.com/business/security_response/attacksignatures/detail.jsp?asid=24379

Hope that answers!!!

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

khaskins82's picture

I'd like to add that you can do  a lot more to protect your computers by insuring that they are patched and up to date.

la_ripper's picture

Hello This is a backdoor trojan .

U would have install patches.

 

Bried description on how does backdoor works:

A backdoor is a malicious computer program or particular means that provide the attacker with unauthorized remote access to a compromised system exploiting vulnerabilities of installed software and bypassing normal authentication. A backdoor works in background and hides from the user. It is very similar to a virus and therefore is quite difficult to detect and completely disable.

 

Hence I would strongly recommend you to isntall patches.

Don't forget to mark your thread as 'solved'  or vote with the answer that best helped you!
 

sridhar.bb's picture

By the way what you meant by patches, we are already update the virus difinitions up to today. I dont konw what you mean by patches please let me know more about "patches" and what are all them where can i download them.

 

your help would more helpfull.