I thought Javascript does not have viruses like Java applets do. I turned off my Java plugin in the browser, but I can’t really turn off Javascript. Nothing would work if I did.
This is an example:
I was just browsing for Javascript tutorials and on GWT and one of the blog sites had Javascript virus.
Any one knows anything about this? Here is screen shot of what my ESET reported on my PC. It seems to have blocked it.
It is called JS/IFramne.DE trojan, and was coming from a bad site called http://www.gmarwaha.com/blog
(DO NOT CLICK OR GO TO THE ABOVE SITE, IT HAS JAVASCRIPT TROJAN, BAD SITE!)
My question is, how to protect myself from Javascript viruses and trojans?
Is Javascript just as bad as java applets when it comes to viruses? Other than having anti virus installed on the PC, and be smart above which web sites to visit, what else can one do?
I am starting to think that one should not even be on the internet at all any more.
Everywhere one goes, there is a virus and trojan, and now Javascript also.
This is a case where 3rd party widgets go rogue or the whole site.
JS itself isn’t a virus building language nor does it have access to the system. It’s isolated in the browser. However, JS can be used to redirect you to a malicious site or embed an iframe that displays the malicious site. But JS isn’t the language that carries out the attack, it just aids the attack.
The main attack is carried out when the browser itself or it’s plugins have security flaws or features that attackers exploit. The most recent attacks were on Java and Flash, where both plugins have access to the local machine resources.