Zero Day Malware for KIS 2020

Hello.

My primary security software is Kaspersky Internet Security 20. Can anyone say if there is any real-time, zero day anti-malware software compatible with KIS?

Thank you again.

 

KIS should be good enough on its own.
To further improve, add HitmanPro.Alert.
https://www.hitmanpro.com/en-us/alert.aspx

 

KIS is probably all you need. If you would like to add some additional layers of security, you could try the following tools from NoVirusThanks:

• OSArmor - https://www.novirusthanks.org/products/osarmor/

• SysHardener - https://www.novirusthanks.org/products/syshardener/

 

any current exploit is tested against all decent antivirus-software - so the answer is "yes". but kaspersky is your wrong choice if you only rely on kaspersky. at first you should secure your system, then your browser, at least you behavior for unknown software. antivirus-software can help you to get a decision, but it wont help you out of unconsciousness of usage.

in case of windows 10 any other antivirus is more than futile.

 

For zero day protection your best option is to make sure that you use updated OS and software. Zero days are usually not used against ordinary users and are deployed in targated attacks. So if you don't think that you are targeted by APT, updating your stuff is your best defence.
You can also try 0Patch and their micropatches if you are afraid about vulnerabilities for which patch was not released yet, though I don't know how it plays with KIS.

So IMO you don't have to add anything to KIS.

Edit: here is also a link to Enhanced Real-World test conducted by AV-C. It's designed to test resilience against targated attacks, exploits and fileless threats: https://www.av-comparatives.org/tests/enhanced-real-world-test-2019-consumer/

 

With KIS on your computer, the next best protection against zero-day malware is to image your system disk to a separate, high-capacity hard drive, at least 2-3 times weekly. A retained image of a clean system is "bullet-proof" security.

 

Thanks, to all of you, for your responses. I very much appreciate it.

 

Using Kaspersky Total Security with Heimdal Thor.

Both are working good enough.

 

I agree, a working imaging program (meaning backup and verified restoration of system) is the best all around solution against malware (unlikely) or mis-configurations, botched Microsoft updates/upgrades. Alternatively you could try using Sandboxie or Shadow Defender which are programs designed to create a virtual volume that can protect your real system if your AV fails to detect zero day malware.

 

the rwt from avc dec'19 is crap, only 6 products, horray
read the one before which includes some more and ms defender
https://www.av-comparatives.org/tests/real-world-protection-test-jul-aug-2019-factsheet/

it has more FP but got 100% and 0 infection! and its not intrusive to windows like others. word!

 

Actually it's so good that only 6 vendors decided to participate. From test description (my bolding):
"The following vendors participated in the Enhanced Real-World Test. These are the vendors whose products scored well in the internal pre-test, and who were confident enough in the protection capabilities of their products against file-less attacks to take part in this public test. All other vendors in the Consumer Main-Test Series opted out of the test."
I guess that now we know which vendors have confidence in their products

[/offtopic]

 

What is "rwt"?

 

I think tweaking (hardening) KIS settings is a better choice than adding a second program.
You can start by disabling Perform recommended actions automatically, thus making the suite more interactive.



There are also settings under Application Control and Firewall that can make the suite bullet proof. Unfortunately I don't use Kaspersky any more so can't help; try Kaspersky forums.

 

I guess it means real world test, although it should be real world protection test...

 

I guess he meant that also. But the test he was refering to, was named “Enhanced Real-World Test” by AV-C.

 

Take a loot at these reports
https://malwaretips.com/threads/kaspersky-report-april-2018.82858/
https://malwaretips.com/threads/malwaretips-kaspersky-report-march-2017.70713/
https://malwaretips.com/threads/kaspersky-report-november-2016.65072/
https://malwaretips.com/threads/malwaretips-kaspersky-report-november-2016.66582/
https://malwaretips.com/threads/kaspersky-report-may-2018.82591/

You can see that Kaspersky has consistently gotten good results.

 

And here is another test for protection against fileless malware: https://www.av-test.org/fileadmin/pdf/reports/AV-TEST_Kaspersky_Fileless_Malware_Test_Report_2019-09_EN.pdf

 

You shouldn't rely too much on malwaretips forum as a reliable source. They don't seem trustworthy, considering the reports user reports from two of the biggest names of antivirus:

https://safeweb.norton.com/reviews?url=malwaretips.com

https://i.imgur.com/P9txfRk.png

If you ask me, they're biased. Even their new logo makes your subconscious think of Kaspersky.

 

I have been there for a few years now. And as far as Kaspersy scores are concerned, @harlan4096 is reliable.

He is one of the people that test Kaspersky the most. And you can probably find him active in Kaspersky own forums

Have you ever seeing the Hub?

Concerning the bias statement, I disagree. While a majority can have a favorite AV that doesn't make it bias.

Also products must be tested with a set of requirements
https://malwaretips.com/threads/mus...or-replying-in-the-malware-vault-forum.75326/

https://malwaretips.com/threads/how-to-perform-dynamic-malware-testing-for-hub-testers.55290/

While one can claim the testing methodology is not perfect. From my perspective it doesn't seem prone to bias.

 

@Azure Phoenix Idk, I was there for some weeks and I've always found that the mods were non-neutral. They obviously and very clearly have their favorite AV and worse than that, AVs that they clearly hate and bash on. And they will go against other opinions. If you insist in "arguing", they won't rest until they ban you for "spam", without any notice, then, you're unable to contact the admin, no answer from email support, nothing. But they let themselves and others post spam and bate if it fits their taste.
If you never go against the opinion of the small main userbase, of course they will like you there with them. There's one admin that controls everything in there, he owns the forum and it's basically dictatorship.
I was then surprised to see on Norton's website that so many people reported exactly what I experienced there.

 

I don't know if that's true about the mods. I have never had any issue with them.

But my initial post was only about Kaspersky test scores. Not about the mods.

 

Some of the tests were made by their admins and users, I was talking about those.
Anyway, for me they're "blacklisted". I've been on forums for many years and I notice very easily when there's no impartiality.

 

I'm Mod in Kaspersky forum since many years, and also was promoted to Mod of the "Computer Security Configuration" section around 3 years ago at MWT, and yes I have Kaspersky in most of my systems, I have been a Kaspersky Gold Beta tester (but this status was already deprecated) for many years, and still continue joining Kaspersky beta testing every year...

Also I have being posting malware results for many different antivirus, every month I test a different one indeed...

 

@harlan4096 I remember you being one of the few good ones.
If we keep digging we keep finding: https://linustechtips.com/main/topic/601671-worst-community-you-have-ever-been-a-member-of/

 

Only one person, the OP is talking about the site from what I saw. The others are talking about various different forums like Reddit.