Jack

Level 85
Verified
Staff member
NSS Labs released two test reports of endpoint protection products which reveal new shortcomings in these widely deployed products. They cover multi-vector attacks (malware delivered from the web, email, network file sharing and USB flash drives), memory-only attacks, and anti-evasion techniques.

Key findings from the reports show:
  • Malware caught via one entry point may not be detected when introduced via another entry point. E.g. malware that is detected via a web download could be missed if downloaded from a USB drive or network file server.
  • Products missed between 10% and 60% of the evasions typically used by cybercriminals.
  • Less than a third of the tested vendors had protection for memory-only malware, leaving a significant evasion gap in their products.

More details - link