Drive-by download: Difference between revisions

Content deleted Content added

Inline

Revision as of 22:33, 4 March 2012

Drive-by download means two things, each concerning the unintended download of computer software from the Internet:

Downloads which a person authorized but without understanding the consequences (e.g. downloads which install an unknown or counterfeit executable program, ActiveX component, or Java applet).
Any download that happens without a person's knowledge, often spyware, a computer virus or malware.^[1]

Drive-by downloads may happen when visiting a website, viewing an e-mail message or by clicking on a deceptive pop-up window:^[2] by clicking on the window in the mistaken belief that, for instance, an error report from the computer' operating system itself is being acknowledged, or that an innocuous advertisement pop-up is being dismissed. In such cases, the "supplier" may claim that the person "consented" to the download although actually unaware of having started an unwanted or malicious software download. Websites that exploit the Windows Metafile vulnerability (eliminated by a Windows update of 5 January 2006) may provide examples of drive-by downloads of this sort.

Hackers use different techniques to obfuscate the malicious code so that antivirus softwares aren't able to recognize the code and it is executed in hidden iframes so that the user can't recognize it visible - and even for experienced user it is hard to read.^[3]

A drive-by install (or installation) is a similar event. It refers to installation rather than download (though sometimes the two terms are used interchangeably).

References

^ "Exploit on Amnesty pages tricks AV software". The H online. Heinz Heise. 20 April 2011. Retrieved 8 January 2011.
^ Olsen, Stefanie (8 April 2002). "Web surfers brace for pop-up downloads". CNET News. Retrieved 28 October 2010.
^ Holz, Thorsten (18 June 2010). "CSI:Internet - Episode 1: Alarm at the pizza service". c't (13/2010). Heinz Heise. Retrieved 8 January 2011. {{cite journal}}: More than one of |work= and |journal= specified (help)

This malware-related article is a stub. You can help Wikipedia by expanding it.

[1] "Exploit on Amnesty pages tricks AV software". The H online. Heinz Heise. 20 April 2011. Retrieved 8 January 2011.

[2] Olsen, Stefanie (8 April 2002). "Web surfers brace for pop-up downloads". CNET News. Retrieved 28 October 2010.

[3] Holz, Thorsten (18 June 2010). "CSI:Internet - Episode 1: Alarm at the pizza service". c't (13/2010). Heinz Heise. Retrieved 8 January 2011. {{cite journal}}: More than one of |work= and |journal= specified (help)

[1]

[2]

[3]

@@ Line 1: / Line 1: @@
 {{mergeto|Web threat|date=January 2012}}
-'''Drive-By download''' means two things, each concerning the unintended [[download]] of [[computer]] [[software]] from the [[Internet]]:
+'''Drive-by download''' means two things, each concerning the unintended [[download]] of [[computer]] [[software]] from the [[Internet]]:
 # Downloads which a person authorized but without understanding the consequences (e.g. downloads which install an unknown or counterfeit [[executable program]], [[ActiveX]] component, or [[Java (software platform)|Java]] applet).