Antivirus bods grilled: Do YOU turn a blind eye to government spyware?

Discussion in 'malware problems & news' started by Dermot7, Nov 5, 2013.

Thread Status:
Not open for further replies.
  1. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,196
    Location:
    Surrey, England.
    http://www.theregister.co.uk/2013/11/05/av_response_state_snooping_challenge/
     
  2. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,516
    I'd be more worried about them collaborating with the government or abusing our data themselves.
     
  3. TheWindBringeth

    TheWindBringeth Registered Member

    Joined:
    Feb 29, 2012
    Posts:
    2,084
    ... or simply failing to properly implement and protect things. A government, and/or other, adversary could be tapping [and MITMing] the network connections of a company's servers or datacenters. Any information that isn't robustly encrypted is up for grabs. Any weakness in the way software updates are done, the way local signatures are updated, the way cloud queries are handled, etc could be exploited.
     
  4. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,196
    Location:
    Surrey, England.
    http://arstechnica.com/tech-policy/...and-remediate-any-malware-attack-even-by-nsa/
     
  5. chimpsgotagun

    chimpsgotagun Registered Member

    Joined:
    Dec 1, 2012
    Posts:
    55
    You guys suspect security labs located in USA have backdoors for NSA in their products, but trust Russia-based labs don't have backdoors to their national security agencies?

    I'm not from Nato country (still western, supposedly), but I'd rather have NSA having access to my data than Russian or Chinese agencies. Your mileage may vary, ofc.

    Running mainly Comodo here currently, despite having an F-Secure (from non-Nato western, supposedly, country) and Norton licenses too. (Norton doesn't work well in 64-bit Win8, and I like Comodo's firewall. Also NSA going through my data doesn't worry me that much.)

    There aren't many western non-Nato country security labs that make firewalls or anti-virus products, are there? Only F-Secure comes to my mind right now.
     
  6. TonyW

    TonyW Registered Member

    Joined:
    Oct 12, 2005
    Posts:
    2,633
    Location:
    UK
  7. noone_particular

    noone_particular Registered Member

    Joined:
    Aug 8, 2008
    Posts:
    3,798
    Conventional, non-government malware has been using several methods to evade detection for years, everything from encryption, obfuscations, packers, etc. Why would anyone think that a government agency with nearly unlimited funds and all the skill that money can buy wouldn't be using these and other methods far more effectively? When government agencies can sucessfully gain unlimited access to companies like Yahoo and Google, why would anyone think they haven't done the same with the AV vendors? IMO, it's a safe bet that any government malware identified by an AV is already obsolete and has been replaced by something better.
     
  8. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    4,047
    Location:
    USA
    Don't care, I don't live in Russia. What are they gonna do? If it is true it is still the lessor of evils.
     
  9. ComputerSaysNo

    ComputerSaysNo Registered Member

    Joined:
    Aug 9, 2012
    Posts:
    1,413
    Off course they turn a blind eye to government malware, you will have more luck finding a 0-day on virustotal than using a AV.
     
  10. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,695
    Don't use any of them, and then no problem.
    Mrk
     
  11. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    ESET response to Bits of Freedom open letter on detection of government malware

    http://www.welivesecurity.com/2013/...en-letter-on-detection-of-government-malware/
     
  12. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    4,047
    Location:
    USA
    Re: ESET response to Bits of Freedom open letter on detection of government malware

    Good to see an official response, though I never suspected ESET of such things anyway.
     
  13. siljaline

    siljaline Former Poster

    Joined:
    Jun 29, 2003
    Posts:
    6,619
    Re: ESET response to Bits of Freedom open letter on detection of government malware

    As KAV or Kaspersky recently indicated - malware is malware and we will issue detections for them and proactively support our clients regardless of the origins of said malware.
    Nation State malware gets no exceptions by us and I applaud this.
    http://arstechnica.com/tech-policy/...and-remediate-any-malware-attack-even-by-nsa/
     
  14. siljaline

    siljaline Former Poster

    Joined:
    Jun 29, 2003
    Posts:
    6,619
  15. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,196
    Location:
    Surrey, England.
  16. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    The government doesn't need backdoors in AV, they're not exactly hard to get around, especially with government funding.
     
  17. lodore

    lodore Registered Member

    Joined:
    Jun 22, 2006
    Posts:
    9,006
    I do wonder how mcafee and symantec as well as other big players.
     
  18. Wroll

    Wroll Registered Member

    Joined:
    Nov 29, 2011
    Posts:
    549
    Location:
    Italy
    Like any of them will admit they won't include fixes for malware made by some governments. These companies work in a field where they can lie without a problem.
     
  19. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    4,047
    Location:
    USA
    I doubt they would lie. They would just give a vague answer to dance around the subject and not totally answer the question. They would not outright say that they don't, but wouldn't directly admit to it either.
     
  20. siljaline

    siljaline Former Poster

    Joined:
    Jun 29, 2003
    Posts:
    6,619
  21. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,196
    Location:
    Surrey, England.
  22. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    Thanks for the heads up Dermot7.

    Too bad that only 30% replied.


    The letter was sent to these vendors so it's easy to see wich vendors that did not reply.
     
    Last edited: Nov 16, 2013
  23. Inside Out

    Inside Out Registered Member

    Joined:
    Sep 17, 2013
    Posts:
    421
    Location:
    Pangea
    This. So a positive answer is still something.
    Well, it's far from out of character for them. :thumb: I guess Emsi, Vipre, Sophos and Fortinet would answer too if it they also got the letter; they do good research as well.
     
    Last edited: Nov 17, 2013
  24. Dave0291

    Dave0291 Registered Member

    Joined:
    Nov 17, 2013
    Posts:
    553
    Location:
    U.S
    I'm really out of my league when discussing such matters, but I don't believe that AV vendors are hiding much from their users. I very well could be wrong, and that would be a shame. As things are, I'm nearly forced to assume that U.S based vendors can't just tell the government to shove off and that they will provide data when pressured. However, willingly just letting government malware through doesn't seem like a noose these vendors want around their necks. With that said, I have doubts that AV vendors would even be able to pick out and block the malware until it was already too late, such as the case was with previous malware.
     
Loading...
Thread Status:
Not open for further replies.