Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
Kaspersky Internet Security 2017 vs Cerber Ransomware 4.1.1
Message
<blockquote data-quote="DardiM" data-source="post: 560164" data-attributes="member: 52613"><p>Good Idea</p><p></p><p>The author make tests, without all explanations : not all the settings are shown, so we can only make "suppositions".</p><p></p><p>An important part :<span style="color: #336600"> Application Control</span></p><p style="text-align: center"></p> <p style="margin-left: 20px"><p style="margin-left: 20px"><p style="margin-left: 20px"><p style="margin-left: 20px"><p style="margin-left: 20px">=> it can make all the difference the way it is set up, with unknown (for the AV) samples.</p> <p style="margin-left: 20px">=> the author should have shown the settings he used.</p> <p style="margin-left: 20px"></p> </p> </p> </p> </p><p>Then the author get a conclusion : "Failed".</p><p></p><p>And posting here, you can't be sure it has really failed.</p><p></p><p>In fact it is better to put here a title without "failed", because it can really make a confusion.</p><p></p><p><span style="color: #0000b3"><strong>Title :</strong> Kaspersky Internet Security 2017 vs Cerber Ransomware 4.1.1</span></p><p style="margin-left: 20px">- Author : some details</p> <p style="margin-left: 20px">- Its conclusion</p> <p style="margin-left: 20px">- Video</p><p></p><p>But we don't know if the malware was able to run because of the "<em>run as administrator</em>" + <em>unknown sample </em>+ <em>bad set up on</em> <span style="color: #336600">Application Conctrol.</span></p><p>KSI failed or the author used a methodology with settings that helps KIS to fail on this sample.</p><p></p><p>An unknown file is allowed to run, but as soon he has a bad / suspicious behavior: KIS detected it, blocked it and helped to decrypt/restore some infected files and to delete the malware => That is also the dynamical part of a good AV Suite</p><p></p><p>Then discuting about the thread can help each other to determine some other setups,</p><p>to test (example) and understand what settup is to improove.</p><p>(for example, deffaut deny is eays to setup with KIS)</p><p></p><p>(Interesting test : launch again the same malware and : see the new behavior => is KIS learned !?)</p><p></p><p><strong><span style="color: #5900b3">JOKE ON</span></strong></p><p><span style="color: #b300b3">The author really need to learn some security tricks</span></p><p> <span style="color: #b300b3">or how to better setup the security tools he used</span></p><p style="margin-left: 20px"><span style="color: #b300b3">=> It fails to often when he tests, hahaha </span><img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /></p><p><strong>JOKE OFF</strong></p><p><span style="color: #b300b3">/DardiM vanished</span></p></blockquote><p></p>
[QUOTE="DardiM, post: 560164, member: 52613"] Good Idea The author make tests, without all explanations : not all the settings are shown, so we can only make "suppositions". An important part :[COLOR=#336600] Application Control[/COLOR] [CENTER][COLOR=#336600][/COLOR][/CENTER] [INDENT][INDENT][INDENT][INDENT][INDENT]=> it can make all the difference the way it is set up, with unknown (for the AV) samples. => the author should have shown the settings he used. [/INDENT][/INDENT][/INDENT][/INDENT][/INDENT] Then the author get a conclusion : "Failed". And posting here, you can't be sure it has really failed. In fact it is better to put here a title without "failed", because it can really make a confusion. [COLOR=#0000b3][B]Title :[/B] Kaspersky Internet Security 2017 vs Cerber Ransomware 4.1.1[/COLOR] [INDENT]- Author : some details - Its conclusion - Video[/INDENT] But we don't know if the malware was able to run because of the "[I]run as administrator[/I]" + [I]unknown sample [/I]+ [I]bad set up on[/I] [COLOR=#336600]Application Conctrol.[/COLOR] KSI failed or the author used a methodology with settings that helps KIS to fail on this sample. An unknown file is allowed to run, but as soon he has a bad / suspicious behavior: KIS detected it, blocked it and helped to decrypt/restore some infected files and to delete the malware => That is also the dynamical part of a good AV Suite Then discuting about the thread can help each other to determine some other setups, to test (example) and understand what settup is to improove. (for example, deffaut deny is eays to setup with KIS) (Interesting test : launch again the same malware and : see the new behavior => is KIS learned !?) [B][COLOR=#5900b3]JOKE ON[/COLOR][/B] [COLOR=#b300b3]The author really need to learn some security tricks or how to better setup the security tools he used[/COLOR] [INDENT][COLOR=#b300b3]=> It fails to often when he tests, hahaha [/COLOR]:)[/INDENT] [B]JOKE OFF[/B] [COLOR=#b300b3]/DardiM vanished[/COLOR] [/QUOTE]
Insert quotes…
Verification
Post reply
Top