Testing Reveals Security Software Often Misses New Malware

Discussion in 'other anti-virus software' started by dr pan k, Jun 21, 2010.

Thread Status:
Not open for further replies.
  1. dr pan k

    dr pan k Registered Member

    Joined:
    Nov 22, 2007
    Posts:
    204
  2. Ibrad

    Ibrad Registered Member

    Joined:
    Dec 8, 2009
    Posts:
    1,949
    Interesting, this has been known for a while though. Personally I don't think this is a alarming wake up call, when I come and find malware samples I normally take some time and send it to the vendors and other security tool sites. The problem is most of the time people don't submit malware to vendors which is really why it takes a while.
     
  3. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    from 2nd link
    Sigh, monetise
     
  4. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,853
    Considering the highest percentage on the latest av-c proactive test was 60 something percent, this is somewhat obvious.
     
  5. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    can't say I have been ever asked to clean a machine infected with stuff that was not in the installed AV products database,never known anybody to be compromised by a "zero day" threat:-the main problem isn't detection of new threats(undetected new threats!)but users not keeping their products up to date,so old "already detected" threats are then the main problem because of the prevalence of these compared to the rarity of the new stuff
     
  6. ace55

    ace55 Registered Member

    Joined:
    Mar 29, 2010
    Posts:
    91
    Sure, when you cleaned the machine it was in the database. But, considering that any decent AV will autoupdate these days, how do you think the threat got on the machine in the first place?

    Answer: It wasn't detected at the time of infection.
     
  7. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,057
    Location:
    North Carolina
    Lol, so why even bother using anything. Seriously. I mean spend money on something that stands a 50/50 chance of working. Something is going to have to give soon or vendors are going to fall so far behind this war, they fall off the earth.

    Still say something like ShadowDefender is one of the few ways to beat most of this.;)
     
  8. lordbest

    lordbest Registered Member

    Joined:
    Jun 16, 2010
    Posts:
    38
    Finally you realise? :p

    And if Shadow Defender is the same as Returnil on 64-bit, it's not "sufficient" protection apparently :p
     
  9. Pain of Salvation

    Pain of Salvation Registered Member

    Joined:
    Apr 21, 2005
    Posts:
    398
    You don't need to spend money.. MSE with LUA and Applocker/SRP will protect you well... I guess.
     
  10. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,516
    Look at my setup, it is composed entirely of freeware and system hardening ;)
     
  11. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
    Where?? What setupo_O ?
     
  12. J_L

    J_L Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    8,516
  13. tobacco

    tobacco Frequent Poster

    Joined:
    Nov 7, 2005
    Posts:
    1,497
    Location:
    British Columbia
  14. bo elam

    bo elam Registered Member

    Joined:
    Jun 15, 2010
    Posts:
    3,770
    Location:
    Nicaragua
    This facts about anti virus applications are the reasons why I don't expect
    the anti virus that I use to protect me at all. Realizing that they are almost
    worthless on real time is what pushed me on learning and using Sandboxie
    and DefenseWall. Products like those two are great against Zero day threats.
    I use to do a lot of scanning but not any more because they always come
    up clean, since I started using them.
    Bo
     
  15. steve1955

    steve1955 Registered Member

    Joined:
    Feb 7, 2004
    Posts:
    1,384
    Location:
    Sunny(in my dreams)Manchester,England
    nope:-most machines that are infected are either set to manual update or have an expired licence:-hence no updates
    The biggest problem in recent times has been the tdss rootkits:-not because it was "new"(far from it)but because no product protected or cleaned it for ages,very new or zero day threats are not the biggest problem,or even a big problem
     
    Last edited: Jun 22, 2010
  16. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,468
    Agree with some people here :p
    Most malware that get through all my relatives/friends pc's are old malware or i mean detected things :D
    (Yeah i fix lots of PC's for free, maybe it's my hobby but sometimes it gets very tiresome) :D
     
  17. vijayind

    vijayind Registered Member

    Joined:
    Aug 9, 2008
    Posts:
    1,413
    I seriously thought with LinkScanner & Sana BB tech integrated, AVG would cream real-world tests. But in reality AVG seems to have gone the CA way; Absorb potent companies and then just drain them.
    AVC, AV-Test and now NSS all dynamic tests point to the same. Such a shame.
     
  18. raven211

    raven211 Registered Member

    Joined:
    May 4, 2005
    Posts:
    2,567
    The writer(s) didn't realize the fact that's stated in the header till now? Wow, they're years after every active member of this forum. :)
     
  19. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
  20. Pleonasm

    Pleonasm Registered Member

    Joined:
    Apr 9, 2007
    Posts:
    1,201
    While historically interesting, note that the results are based on the 2009 editions of the tested products, and thus are out-of-date.
     
  21. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    I know, but this is indeed the test that they were talking about in the article in wich I found this link in the comments. Wich is the same test that PCWorld are writing about on the link in post 1 in this thread.

    But I don't think that the time of blocking malware sites has increased or decreased so much from last year actually:)
     
  22. The Hammer

    The Hammer Registered Member

    Joined:
    May 12, 2005
    Posts:
    5,619
    Location:
    Toronto Canada
    Also the number of vendors was too limited.
     
Loading...
Thread Status:
Not open for further replies.