Comodo: What do they need to do, to improve their product line?

Just to say that this bypasses were made with AV turned off.


They should buy VoodooShield and include it in their AV+FW.
Simple as that.
No HIPS, no BB, no Sandbox, no GeekBuddy.....

 

No

In 6.2 they have removed the "Behavior Blocker" name, so the AutoSandbox is now "Autosandbox" but if you go to advanced settings you'll find out "Behavior Blocker". In fact, Behavior Blocker has 2 parts : autosandboxing of unknown apps + Behavior blocking which will come with V7. Hope it's clear.

 

Oh I didnt use CIS after v6.1 and yes I know something much clearly related to BB is coming soon and my only complain is the un-fixed ago old bypasses.

 

Here is the wrong spirit...If these things arent fixed fast.Malware writers will start to create more malware varients using these tactics to get past CIS and soon CIS will never be effective as it is now.IDK,these are custom made malware varients that intentionally are made that way to bypass these systems so its better to fix these before its too late.

No doubt CIS is bulletproof against almost everything right now apart from those custom made ones which are a bit in the wild but these need to be fixed soon before they they start using these tactics in most malware varients.

 

Egemen said....once next build will be released lal

 

Oh, no! Another fanboy....

 

I am NOT talking about the bypasses that came in v6.2...I am talking about the one that was since 6.1 and there had ample time to fix it in v6.2 and they could have done that and what about the age old stuxnet,flame bypasses still not fixed

But anyway,I just hope they pay attention now

 

Those are bypasses from older versions too.

 

It is still Behavior Blocker

 

That is what spywar actually meant.
he did mention the term "behavior blocker" is used in advanced settings.

In main interface it is termed autosandbox.

 

Yes. Soon there will be a behavior blocker alongside the autosandbox.

 

After reading around a bit, I think they should set the auto-sandbox level to Untrusted or Fully Virtualized.