Malware scanning improved in Google Chrome 17

Google Chrome released it’s first stable (out of beta) release on the 8 February – Chrome 17. This has been some time in the making but it’s finally arrived. This stable release now incorporates a malware download scanner which scans for malicious “.exe” and “.msi” files which checks with a whitelist database (DB) for known good publishers and files.

If a publisher or file cannot be found on the whitelist DB then Chrome will check with Google on whether that website has hosted malicious downloads (past or present). The problem here is that polymorphic packages make the process of identifying malicious download packages very difficult to detect. In this event, Chrome sends the URL and IP of the host and other meta data, such as the file’s hash and binary size straight back to Google. Read more…

You must be logged in to post a comment