- Feb 13, 2017
- 1,486
Bitdefender blocks WannaCry
- Thread starter ras74
- Start date
- Status
- Nov 17, 2016
- 1,242
The word orders.system infected wannacry with kaspersky 2018 lol
The supposedly ineffective anti-ransomware are mitigating Wannacry.
Maybe Kaspersky is at defaults.
- Dec 27, 2016
- 1,480
Yeah, neither the order, nor the words are relatable. More details or a video review could help.
I doubt if it's the default configuration (if that was used) that led to this.
KIS/KTS has 'System Watcher' enabled by default with the optimal settings that allegedly blocked WannaCry.
- Apr 28, 2017
- 326
- Dec 27, 2016
- 1,480
BIS/BTS surely has a great anti-ransomware module added recently. The only two downsides I know are
- weak protection against MBR RW
- good amount of FPs due to the aggressive AI Anti-ransomware module (ATC aside)
- Apr 28, 2017
- 326
Agree
But MBRs are so unprofitable and non-wide spread that I'm fully confident in BD's ability to block with signatures alone.
But the main reason I depend on BD over others, for the non security minded is their excellent mix of serious malware and PUP protection combined with ZERO user dependency.
- Dec 27, 2016
- 1,480
Totally agree! And these malware are mostly used for targeted attacks, but may be leaked or spread ahead.
And that has also been the only turn-down point of ex-BD users! I personally don't like it handling the decisions itself even without the 'Auto-pilot Mode'.
- Jun 5, 2014
- 276
this review is full of flaws, Symantec endpoint is having a problem(the yellow alert it seems he disabled auto-protect which in SEP will disable many other behavioral shields) or Gdata and TrendMicro are showing an alert. in many av programs when you respond to the alert they start to roll back the files that the ransomware encrypted.
yeah i dont see how KIS/KTS 2018 could let wannacry through and not stop it
unless the 2018 beta version he tested is not setup right..
the screenshot he gives only shows the final result, nothing about the setup or updates or version he used etc... not enough information to conclude KIS/KTS 2018 is ineffective at stopping wannacry...IMO
thats like ONLY showing a picture after a thief broke into your house and stole things or broke things. The end result picture tells us nothing about which lock system you use, if windows were left open, or even if the locks on doors was left open, etc, that allowed the thief inside in the first place..
- Apr 28, 2015
- 8,915
All my tests with KTS2018MR0a recently in MWHub are with Defaults Settings, except the PUP/PUA/Adware setting on, You can check my settings (in Spoilers) in every test...
Since that sample of WannaCry was already detected by signature, I disabled the modules indicated in Dynamic Spoiler, but keeping System Watcher on, to test the behaviour blocking:
https://malwaretips.com/threads/w-anna-cry-v2.71397/#post-628222
Last edited:
- Nov 17, 2016
- 1,242
in the past, WD was tested for a long period of time including the creators update version. It never scored too well unfortunately. It was paired with different additional tools like immunet, mcafee but still missed several samples and got bypassed by ransomwares
Yes I have seen that test of yours and the others in that thread (i didn't even know of that section before lol
its good place to see actual testing results by members from these forums, unbiased and full disclosures of testing methods etc much more informative and useful to see )I only meant my post to @ras74 who posted this post and this post showing only the end result of both Kaspersky 2018 & Bitdefender, saying kaspersky 2018 failed the test he did but Bitdefender passed.
I swear those posts he made were in a thread by themselves before, not part of this thread
Maybe mods merged the two threadsOr maybe I was half asleep at the time
Cheers
I'm waiting for the day Microsoft implements ATP into WDSC. Behavioural detection would be a godsend for WD users.
Ah, I can see Kaspersky already drawing up the lawsuit...
If other companies can create and implement behavior based detection, I'm sure Microsoft has the resources to do so also.I'm waiting for the day Microsoft implements ATP into WDSC. Behavioural detection would be a godsend for WD users.
Ah, I can see Kaspersky already drawing up the lawsuit...
But that would mean Microsoft would have to devote much more resources to their WD team, which they might not be too happy or enthusiastic about lol since they already have so many different products to support (computer software aside, they have gaming etc too). They probably figure "WD is good enough for the average person, as long as they keep their Windows up to date".
The key being their message to keep Windows up to date lol, which is the reason they are basically using to put the blame for WannaCry infections to the users themselves. By issuing an update for WinXP even, an OS they stopped supporting a while ago, they are saying "look, we provided the updates to fix the exploit that was used for this ransomware. We even went above and beyond by fixing this problem in old & unsupported OS versions. So if users didn't apply the update then that's their fault not ours"... lol
They already do but it's only available for enterprise customers as a seperate purchase.
With the WDSC update and the upcoming update that plans to implement EMET protections into Windows they're actually putting in a good amount of work into security. Their biggest problem is other AV vendors who will be perfectly happy to bring an antitrust case against them if they start adding technology that will make WD directly compete with other vendors solutions (especially vendors who exclusively offer paid-for solutions as every WD user is seen as a potential sale). Just the mention of the word monopoly in the EU makes the European Commission froth at the mouth and after the $1.3 billion fine Microsoft was slapped with in the last major antitrust case involving the EC they're pretty much forced to bend to the will of other security vendors even if they don't want to.
- Feb 24, 2017
- 1,661
Kaspersky will be running purely on AI technologies by the time WD gets Behavior detection lolI'm waiting for the day Microsoft implements ATP into WDSC. Behavioural detection would be a godsend for WD users.
Ah, I can see Kaspersky already drawing up the lawsuit...
- Status
Similar threads
