- Feb 7, 2023
The product not being updated for 2 years means that it contains a collection of outdated drivers and scanning for malware, emulating (if Comodo uses emulation) as well as running malware in an outdated sandbox MAY (bear in mind I am not saying it WILL but exploring a possibility here) provide malware with more access it could normally have, simply being missed by a regular (if that’s a thing) antivirus. Once a malware is able to obtain kernel access, it could bypass a whole stack of defences.
You really like to talk and have your voice heard, but you should learn to read carefully what people are saying. Above is a quote from a post that is now suffocated under the multitude of posts you generated one way or another, or caused. I urge you to read carefully what I’ve said there.You know your post history is public, right? You stated the product was unsafe "because of bugs and no updates in 2 years."
I am extremely ashamed!How embarrassing for you. Comodo containment runs in User Mode.
I haven’t commented on any single component, be it antivirus, Defense + or Firewall.
I hope you are not trying to claim that Comodo runs entirely in user mode and that virtualisation, even if running contained code in user mode (which would be the most sensible way to run it) can work entirely in user mode, with no kernel access/drivers whatsoever.
Or that abuse/weaponisation of antivirus drivers (such as Trend Micro’s outdated Ransomware Buster driver) is not really a thing.
It’s just something I made up.
But don’t trust me, let’s here what official guidance has to say.
Reducing the risks from using out of date smartphones, tablets, laptops, desktop PCs, appliances or software applications
Why manage risk from obsolete products?Using obsolete products compounds two related problems:
In combination, these issues make high-impact security incidents more likely. This will include malware exploiting remotely-accessible vulnerabilities, which can have a catastrophic impact, across an entire organisation.
The product will no longer receive security updatesIf developers are no longer providing security updates, this increases the likelihood that exploitable vulnerabilities will become known by attackers.
The latest security mitigations are not presentOlder products may lack the latest security measures, increasing the impact of vulnerabilities, making exploitation more likely to succeed, and detection of any exploitation more difficult.
When a product is no longer supported by its developer, there are limits on the measures that will be effective in protecting against new threats. Over time, new vulnerabilities will be discovered that can be exploited by relatively low-skilled attackers.
This is from the UK’s National Cyber Security Centre, but I mean if you say running outdated software is fine… we should.