If you didn't execute the samples how did the system get locked?
- Status
If you didn't execute the samples how did the system get locked?
I did, 3 hours ago
after reading this comment, I executed the sample which locked up the machine and it still did
do you need a video to clarify?
I don't need a video. His test says 7 detections on static and 3 on dynamic, which means 10 total detections, but you've lost those dynamic detections somehow.
- Nov 19, 2014
- 2,350
IMPOSSIBLE. DId you check if your room temperature was under 25C because Cylance will not perform as it should under those conditions. Please retest if you excited the maximum room temperature. /s
Different order and he executed the malware that locks the system before those that don't and get detected?
I tested everything and I got the same result as you said, 7/10 static + 3 more on execution but still missed everything else. Nothing has changed. 3 days passed
the 7th sample made the system unbootable and it didn't get better
haha, my room temp was 32*C at the time of testing. It should be a cause of this poor results over all testing machines
- Oct 31, 2014
- 1,712
- May 16, 2018
- 1,363
Wants to protect everyone under the sun, makes AV only available to US residents...
I don't understand why people are upset it's only available for US residents. If a certain 3 letter agency of a very powerful country in North America gave them the funds to provide it for free to its citizens, then those funds can only be spent on said citizens and residents anyway. If anything this is even more confirmation that they have close ties to a certain 3 letter agency that shall remain unnamed.
Just absurd and ridiculous on multiple levels.
Thanks for testing it! I had the impression that some people didn't believe me on this test because the result was so shocking.
That is disheartening for the proponents of AI based anti-malware like myself, what that does is demonstrate is that Cylance is not a stand alone AV solution it should be used as a layer in in a multi-layer scheme just as it is in an enterprise environment.
- Nov 15, 2016
- 867
- Dec 29, 2014
- 1,716
We're supposed to be serious when opinions of a product can be affected so much, but this is TOO MUCH LOL...
- Apr 13, 2013
- 3,224
Actually not shocking at all. For loads of additional fun try some Worms...
So what's the verdict on Cylance Smart Antivirus among IT gurus in MalwareTips so far? Or suggestions for those that want to use it?
Last edited by a moderator:
- Mar 17, 2016
- 464
@Evjl's Rain if the ones executed are fileless malware if I read correctly only CylancePROTECT has memory protection capabilities. Correct me if I'm wrong.
Last edited:
Well, I'd say so:
Good:
- average good against exe
Neutral:
- is only an antivirus that comes without internet protection etc.
- price you pay
- large CPU load for CPUs with a small amount of cores and little clock rate
- cloud based
Not good:
- against scripts
- behaviour blocker, which allows a lot of bad things
- the advanced mode, which has important and essential functions is difficult to access and remains active only until reboot
- false positives (?)
- data privacy (?)
I haven't tried cylanceprotect so I have no idea but somebody said it could protect against scriptors while cylance smart AV is totally useless against fileless malwares
- Apr 13, 2013
- 3,224
David- Here's the poop- When Cylance went for funding, they did it at the most opportune time possible- malware was everywhere in the News. Those who actually fund these Startups were just chomping on the bit to throw money at these companies (for a piece of the action- namely some stock). Once the company so funded goes public these initial shares can be then sold to the public at a profit. That's how things work.
Now Cylance was really smart in one respect- they used a bunch of this seed money in self promotion. Obviously it worked as even here this thread is 18 pages long!
But the time has come to call a spade a spade- Cylance Smart AV is a Cloud Antivirus. Period. It is prone to numerous False positives of legit applications and will mark as Unsafe anything packed. And as was shown in the test discussed above, it isn't all too hot on D+1 or newer malware- certainly nowhere near the Time To detection results one can see from something like Kaspersky. In short, it is nothing special at all.
Just remember that although a Company calls a Pig a Lamborghini this does not mean you can expect it to run at 200 mph.
Now Cylance was really smart in one respect- they used a bunch of this seed money in self promotion. Obviously it worked as even here this thread is 18 pages long!
But the time has come to call a spade a spade- Cylance Smart AV is a Cloud Antivirus. Period. It is prone to numerous False positives of legit applications and will mark as Unsafe anything packed. And as was shown in the test discussed above, it isn't all too hot on D+1 or newer malware- certainly nowhere near the Time To detection results one can see from something like Kaspersky. In short, it is nothing special at all.
Just remember that although a Company calls a Pig a Lamborghini this does not mean you can expect it to run at 200 mph.
- Mar 17, 2016
- 464
Here:
https://www.cylance.com/content/dam/cylance/pdfs/business-brief/Fileless_Malware_Business_Brief.pdf
https://www.cylance.com/content/dam...s/Feature_Focus_PROTECT_Memory_Protection.pdf
Cylance made it clear in naming their product "Cylance Smart Antivirus" its an AV. Period... guess we shouldn't expect much.
- Jun 24, 2016
- 2,485
@Evjl's Rain has tested Cylance. @askalan has tested Cylance. I have tested Cylance.
How many tests do you need in order to prove to you that Cylance still needs a hard work to be close to a "perfect solution"? If you find the Hub testing not realistic I suggest you to do your own tests and share them here. We will be surely amazed by your work!
How many tests do you need in order to prove to you that Cylance still needs a hard work to be close to a "perfect solution"? If you find the Hub testing not realistic I suggest you to do your own tests and share them here. We will be surely amazed by your work!
Last edited by a moderator:
The final state of the system is rather irrelevant with this product. What I find much worse is the marketing, which is misleading.
- Status
Similar threads
