Yahoo Answers is shutting down on May 4th, 2021 (Eastern Time) and beginning April 20th, 2021 (Eastern Time) the Yahoo Answers website will be in read-only mode. There will be no changes to other Yahoo properties or services, or your Yahoo account. You can find more information about the Yahoo Answers shutdown and how to download your data on this help page.

Can some of the most sophisticated malware manage to bypass quarantining?

Quarantine is supposedly a safe place where suspicious and detected objects are unable to harm your computer (viruses) or your identity (spyware). Hackers can manage to extract quarantined files, and some malware may also manage to extract quarantined files. With the steady increase of cybercrime it seems to me that some of the most sophisticated, quarantined malware may manage to either cause harm while quarantined or extract itself from quarantine. Is it true that some of the most sophisticated malware can manage to bypass quarantining?

Update:

Is the following paragraph (a guess of mine) correct or incorrect? "A hacker or malware outside quarantine can extract quarantined files. However, it is not possible for quarantined malware to manage to escape quarantine itself."

4 Answers

Relevance
  • ?
    Lv 7
    6 years ago
    Favorite Answer

    Anything that isn't quarantined is still active. Malware rarely comes alone these days.

    It is possible for AV to find an active payload, but miss a support process or browser/system setting (search bar, browser toolbar, autorun setting) that can restore the file. This would be the case if you find your AV software repeatedly cleaning the same threat.

    Depending on the AV program, its quarantine may indeed be secure, and objects inside cannot execute themselves, but undetected malware can operate normally.

  • Anonymous
    6 years ago

    Once it is put in quarantine it remains there unless you restore it. The malware has no magical powers where it releases itself.

  • Carol
    Lv 4
    6 years ago

    Every message, inbound and outbound, is assigned a spam confidence level (SCL) based on the likelihood that the message is spam. Depending on the SCL, an inbound message may be relayed directly to the user’s Junk Email folder. All content-filtered messages are relayed to the user’s Junk Email folder by default. On outbound messages, if the SCL indicates that a message is spam, it is either routed through the high risk delivery pool, or it is bounced and not delivered. If the message isn’t delivered, the sender should receive a message, called a delivery status notification (DSN), telling them that the message couldn’t be delivered.

  • 6 years ago

    Once it is put in quarantine it remains there unless you restore it. The malware has no magical powers where it releases itself

Still have questions? Get your answers by asking now.