As common security enforcement's changes hackers do to, lately a lot more security suite include anti exe, which isn't impossible to get through even when it comes to AppGuard.
Most home users wouldn't even use it like it should be used anyway, to complicated without the proper training that most home users don't have time for and some never will understand.
Apart from that most of what the media calls hackers don't do it by code, they take advantage by other means.
Sometimes I'm surprised how easy it is to get classified information and access to things that an unauthorized person never should get access to... to many companies lack behind with proper procedures for security checks and education of their staff, even worse when it comes down to small companies like shops downtown.
@Mineria
You outline the primary problems faced by most users no matter which security soft that they are using.
* * * * *
The only bypasses of AppGuard that I have seen involve social engineering + user mistakes. In the case of a user mistake, that technically is not a bypass.
In both Protected and Lock Down modes I have seen AppGuard block nasty online exploit payloads - even fileless malware. Blue Ridge Networks states there has never been an in-the-wild confirmed bypass of AppGuard. I take such statements with a grain of salt. In fact, you can ask anyone, I am one of the greatest critics of such statements.
IF any of us AppGuard beta testers find anything that can be considered a bypass, then as a group, we generally hammer Blue Ridge Networks about it - and it gets fixed. AppGuard
might be bypassed using NET Framework or C programs, but this hasn't been confirmed yet. Add the most vulnerable processes shipped with Windows to User Space and then there is virtually no worry about C coded programs bypassing AG.
AppGuard use is confusing at first with the terminology and settings, but after using it for a while it is not difficult to figure it out. But you are right, it requires a user's determination and effort to figure it out. I have often criticized Blue Ridge Networks about the usability of AppGuard. That being said, AppGuard requires manual administration and was never intended to be an automated solution.
AppGuard only protects physical system from persistent infection if used properly; it provides no real anti-hacking counter-measures. It isn't comprehensive protection - as just an example brow-lock can still happen, malicious browser extensions can be installed by user, exploits can still happen, etc - but given the choices that are available on the market AppGuard ranks as the best software restriction policy soft for home users.
AppGuard is not data protection. It is physical system protection. It protects most data indirectly by blocking the execution of malware on the system.
* * * * *
Throw 10,000 random malicious files at AppGuard in Lock Down mode. At the end of the test I will bet that all you will have are sore fingers and a clean system.
If anything is dropped to system, then it would be inert on the system. This might happen in the case of malicious scripts.