Test the Effectiveness of Your Antivirus

Testing an antivirus before its launch is something that is done regularly. Thus, the AV Tests (name by which the aforementioned tests are known) allow users to choose which antivirus they want to install on their computers, knowing what their main characteristics are and what they protect against.

Test the Effectiveness of Your Antivirus
So far everything normal. So what is the problem? Some manufacturers of security solutions have raised their voices against the fact that these tests are “not modernized”. In what sense? Some companies claim that, although the complexity of security applications has grown considerably in recent times, when conducting evaluations they do not test the new technologies with which they are developed.

Complaints heard?

Well, it seems that the complaints have not fallen on deaf ears. Those primarily responsible for conducting the tests have come to the conclusion that, as time passes, threats are becoming more harmful, newer and more difficult to detect, and that security solutions are trying to protect against these new ones. threats, it is necessary to change the way of evaluating applications and incorporate new formulas. Thus, managers from Symantec, F-Secure and Panda Antivirus Software reached an agreement to develop a new evaluation plan whose mission is to reflect the new capabilities incorporated in the solutions that are being launched on the market.

Although at first this new test will evaluate the products of the three firms, they trust that little by little the rest of the players in the antivirus market will join the initiative and joint evaluation standards will be developed. One of the most common tests is to "infect" a PC with numerous malicious applications to see if the antivirus engine is capable of detecting all threats. In this way, the aforementioned engine contains a series of indicators, known by the pseudonym "signatures", which allow identifying harmful software.

This test, which was considered highly reliable at the time, is one of the most controversial tests. The reason is that, for manufacturers, their solutions incorporate other methods of identifying not only viruses, but also other threats such as malware, more effective if we consider the importance and magnitude of the threats. In this way, McAfee security engineer, highlighted that “this test is important, but it is no longer infallible. The reason is none other than the fact that there has been an explosion in the number of unique virus programs created by hackers that have resulted in a reduction in the effectiveness of the virus. The result is that manufacturers have had to incorporate another type of defense to detect other types of threats, and in some cases it overlaps with detection through signatures”.

What is being used?

And, as technology advances, manufacturers are employing behavior analysis detection systems that identify whether a certain application is harmful depending on the action it takes on the PC. In other words, a user can download a virus or malware onto their computer, without their knowledge, and that it is not detected by those security applications that base their operation on analysis through signatures. On the other hand, if the program in question starts to send spam, thanks to the behavior analysis detection system, the action of the virus can be neutralized.

But it is not only detected in the case of spam. The actions of threats can also be neutralized in the case, for example, that they try to exploit a buffer vulnerability, where a failure in internal memory can mean that the virus works without problems.

Manufacturers also want evaluations of other types of systems, such as host-based systems, or intrusion or prevention systems (which include firewalls and inspection techniques), as these can also stop systems attacks.

Shapes count too

Another key factor in changing evaluation modes lies in the way in which a computer can be infected. For example, years ago it was most common for a virus to collect on a PC if the user had inserted a floppy disk. Instead, today, the forms are different, and more complex. The infection can occur through an email message, or by visiting web pages that have been designed to exploit web browser vulnerabilities.

Thus, it should be noted that, continuing with the reasoning, the various modes of attack also imply that there are various defenses, “which should be evaluated exhaustively. The tests that are carried out based on the analysis of the signatures take less than five minutes to analyze the system, insufficient time if what you want is to know the effectiveness of a certain solution ”, highlights Andreas Marx, director of AV-Test.org . "The reason why this type of test is still carried out is that it is easy and cheap," continues the person in charge.

And the worries do not stop here. The amount of viruses that exist in the network, or the fact that the samples that are carried out are “already old”, are factors that also concern the computer security sector, which advocate “an evaluation system that verifies what applications are capable of neutralizing threats, since if the analyzes are excessive they can affect the functioning of the computers, while if they are scarce, viruses can create real havoc”.

Comments

Post a Comment

Popular posts from this blog

What Is Olpair Virus and How to Evacuate It?

Image
Did you erroneously accept pop-up messages on your internet browser and now you keep seeing nosy pop-up banners constantly? You may have been contaminated with the Olpair.com malware virus. What Is the Olpair Virus? The Olpair Virus is an aggravating type of adware/malware that powers your internet browser to show multiple pop-up advertisements, redirects, and notifications. Alone, it's only bothering as opposed to dangerous, however, it can free your computer up to the dangers that originate from review unsafe advertisements that deliver considerably more nefarious viruses. How Accomplishes Olpair Work? Additionally some of the time known as Openload.co Pair, Olpair is principally a pop-up virus. It powers your browser to show multiple pop-ups and notifications for adverts with those adverts frequently being suspicious and malicious in themselves. By all accounts, it's not as dangerous as a 'valid' virus or type of malware, however, it is irritating. It addit...
Read more

CYBERSECURITY THE BIGGEST THREAT TO BUSINESS

Image
From hacker attacks to stolen digital goods: Cyber- at tacks are a growing problem, especially for businesses. Data theft and loss of operations can have far-reaching consequences for businesses. For hackers, on the other hand, cyber-attacks represent potential business in the millions. Whether as an individual or as an employee of a company: we leave data in the digital world on a daily basis by relying on systems that work. Digitization of data, such as a detailed customer file, is now essential for businesses. This is the only way to efficiently organize information and share it within a company. Therefore, complete data protection is essential: "Digital systems must be constantly updated to correct any security breaches without delay. If a hacker or malware succeeds in exploiting such a security breach, sensitive data can be stolen or the computer system of a company can be paralyzed”. In addition, regular data backups, the careful conservation of these backup copies as well a...
Read more

Types & Classification of Computer Antivirus

Image
Antivirus rating The multiple ways in which a computer can be attacked, infected or damaged translate into the existence of very varied defense mechanisms, reflected in a wide range of antivirus on the market. These Antiviruses can be classified according to very different criteria and, depending on one or another, these programs will have different characteristics and will fulfill different objectives. We have developed an exhaustive catalog according to different ordering guidelines. Keep reading to learn about the types of antivirus that exist and find out which one interests you the most! Types of Antivirus according to their purpose Prevent, identify or eliminate are the three possibilities that are presented to kill a virus and, according to them, there are three antivirus models: · Preventive Antiviruses: They are characterized by anticipating the infection to avoid the entry of a malicious program in the computer. Therefore, its name refers to its ability to prevent...
Read more