Serious Discussion Data leak: Avast Free or Bitdefender Free?

[Nunzio_77]

In your opinion, regarding data leak in case of malware execution, which is more effective in quickly interrupting the connection to an IP address? Avast Free or Bitdefender Free?

I ask this question because sometimes I enjoy running some malware to test Avast Free (or Bitdefender when I had it), I know that it should not be done on a PC but on a virtual machine or on a PC where there is no sensitive data.

Anyway, this is the second time that my Paypal login data has probably been stolen, in fact I am receiving the SMS with the code to access. Obviously I will change the password again.

So I would not want Avast Free to be unable to quickly interrupt the connection to a malicious page/IP server.

The same thing happened about 1 year ago when they hacked my LinkedIn and Google account. At that time I was using Avast and enjoying running some malware (I know it shouldn't be done ).

This makes me wonder... maybe Bitdefender's protection is more effective in this regard? Even if you don't have Bitdefender's firewall.

Obviously I won't do these tests on a PC with data anymore, but this makes me think in case of a real attack where I would run a malicious file.

 

[Bot]

Both Avast Free and Bitdefender Free have robust security features. However, Bitdefender is often praised for its superior malware detection and prevention. It's also worth noting that no antivirus can guarantee 100% protection, especially when intentionally running malware. It's always best to run such tests in a controlled environment, like a virtual machine. Changing your passwords regularly and enabling two-factor authentication can also help prevent data leaks.

 

[Shadowra]

The 2 antivirus programs have web filtering to block the connection, but it would be wise to install a firewall instead.

And between Avast and Bitdefender, I prefer Bitdefender, which will block the connection directly.
And in the event of an infection attempt, ATP is more effective than Avast's IDS.

 

[TuxTalk]

Or get ZoneAlarm.

 

[Nunzio_77]

Escludendo l'uso del firewall avanzato, utilizzare Avast Free + Avast Firewall (gratuito) o Bitdefender Free (Plus) + Windows Firewall?

 

[Jonny Quest]

Excluding the use of the advanced firewall, should I use Avast Free + Avast Firewall (Free) or Bitdefender Free (Plus) + Windows Firewall?

@Shadowra That's what I was wondering too, in using AVG free (same firewall and settings). What do you think?

 

[SeriousHoax]

As you already know that you shouldn't test malware on your PC, but I can understand that it's not easy to stop being curious.
With that I said, I would suggest to at least log out of your accounts on browsers before testing. Create some new email and other accounts for some services for testing purpose only and log into those accounts before testing such malware. That way your real account would remain safe. But still not recommended to test such malware on your personal computer.
Our expert user @Trident also test malware on a real machine, his laptop and he has separate emails and other accounts for that purpose.

 

[Trident]

Our expert user @Trident also test malware on a real machine, his laptop and he has separate emails and other accounts for that purpose.

Yes, it is a laptop specially dedicated to that and it is connected to another router. Deployed on the system are fictional accounts and identities, which have been added to McAfee leak monitoring. Occasionally, when an AV doesn’t do its job, I would get alerts from McAfee about leaked passwords.

 

[Nunzio_77]

Ok I will not run any more tests on my PC.
But I would like to understand which of the two AVs mentioned you suggest to use in case you happen to run a malware on the PC that could start connections to servers/IPs. So my initial question.
You who are more experienced, which one would you recommend?

 

[Trident]

Ok I will not run any more tests on my PC.
But I would like to understand which of the two AVs mentioned you suggest to use in case you happen to run a malware on the PC that could start connections to servers/IPs. So my initial question.
You who are more experienced, which one would you recommend?

When you test malware and stealers with access to your information, they will snatch the session cookies. Using these session cookies, attackers may be able to log-in, even if you’ve got 2FA enabled. You absolutely should not be doing that.

If you do that, you should immediately invalidate all sessions and change your passwords. I personally see what these decoy accounts are going through, constant log-in attempts from all over the world (victims machines most likely).

Now to the question, Bitdefender Free vs Avast Free, these two are more or less the same. Bitdefender relies on signatures, generic signatures and heuristics. Avast relies on the power of the crowd. None of the two will vastly outperform the other one.
Paid Bitdefender editions however, will outperform Avast, due to memory scanner. Something Avast still hasn’t implemented.

 

[Jonny Quest]

When you test malware and stealers with access to your information, they will snatch the session cookies. Using these session cookies, attackers may be able to log-in, even if you’ve got 2FA enabled. You absolutely should not be doing that.

If you do that, you should immediately invalidate all sessions and change your passwords. I personally see what these decoy accounts are going through, constant log-in attempts from all over the world (victims machines most likely).

Now to the question, Bitdefender Free vs Avast Free, these two are more or less the same. Bitdefender relies on signatures, generic signatures and heuristics. Avast relies on the power of the crowd. None of the two will vastly outperform the other one.
Paid Bitdefender editions however, will outperform Avast, due to memory scanner. Something Avast still hasn’t implemented.

So does the Firewall even come into play here, regarding Avast/AVG free having that ability (option), or is it the same as with BD Free using Windows firewall?

 

[ForgottenSeer 114834]

Yes, it is a laptop specially dedicated to that and it is connected to another router. Deployed on the system are fictional accounts and identities, which have been added to McAfee leak monitoring. Occasionally, when an AV doesn’t do its job, I would get alerts from McAfee about leaked passwords.

Do you worry about infecting the router to which you have isolated yourself or worse yet the server to which it connects outbound on?

@Nunzio_77 There are many reasons to not test or mess with live malware especially when you do not know what you are doing. It is one reason you will see posts from me in this forum from time to time trying to remind the usual crowd that other users frequent here and end up encouraged to try things they should not be doing. There is always more "visitors/guests" that members online at any time, and also many members that are novice to average users here.

 

[Trident]

So does the Firewall even come into play here, regarding Avast/AVG free having that ability (option), or is it the same as with BD Free using Windows firewall?

Firewall protects users from internal threats, coming for example from another device on the same network. Optionally, firewalls can be configured to issue warnings/prompts, whether you allow certain programmes to connect. Majority of the firewall tasks are nowadays performed on your router. So not really of utmost importance.

In terms of terminating connections, both Avast Web Shield and Bitdefender terminate connections to malicious C&C servers. They are both very good at that. Both of them usually start remediation process, further removing components which are causing this malicious connection.

 

[Shadowra]

@Shadowra That's what I was wondering too, in using AVG free (same firewall and settings). What do you think?

Identical to Avast...

Yes, it is a laptop specially dedicated to that and it is connected to another router. Deployed on the system are fictional accounts and identities, which have been added to McAfee leak monitoring. Occasionally, when an AV doesn’t do its job, I would get alerts from McAfee about leaked passwords.

Same here!

For my videos, I use a VM that I connect to a 4G router that's totally dedicated to testing (I have 2 Ethernet network cards on my PC, so it's handy) + a WireGuard VPN.

I also have a “crash-test” PC (an old PC I salvaged) where I regularly put antivirus software that I want to keep an eye on, also connected to this router. The accounts on it are also fictitious (and I regularly change the accounts for fun to see when they leak )

 

[Nunzio_77]

So in conclusion, according to you who are the most experienced, who should I trust more?
Avast Free or Bitdefender Free(Plus)?

 

[Shadowra]

So in conclusion, according to you who are the most experienced, who should I trust more?
Avast Free or Bitdefender Free(Plus)?

BitDefender

 

[Trident]

BitDefender

Just go for Antivirus Plus or Internet Security. The latter also comes with firewall.

 

[lokamoka820]

Bitdefender Antivirus Free + Bitdefender TrafficLight.

 

[Jonny Quest]

But, for those who suggest BD Free, there is some very nice, very informative information on the outbound firewall pop ups (Ask mode/AVG/Avast Free) that won't come with BD free. I may need to revisit which connection I'm allowing out. Avast has Ransomware protection (including Strict mode) which Bitdefender free does not have. They have also improved the web shield in the latest update. At times, in normal daily use, and in being alert ourselves, I'm just thinking Avast/AVG with it's settings and features, also come into play as far as any possibilities of malware during normal daily use, no? (with us being alert/aware, our part).

Avast Community

forum.avast.com

This is Nunzio's thread, I'm not trying to hijack it, but he and I both have some of the same questions, and concerns. So I'm just expressing my views, maybe giving a counterbalance view, and of possibly being wrong.

So for a free versions, they may be pretty close security wise, without buying BD?

Now to the question, Bitdefender Free vs Avast Free, these two are more or less the same. Bitdefender relies on signatures, generic signatures and heuristics. Avast relies on the power of the crowd. None of the two will vastly outperform the other one.
Paid Bitdefender editions however, will outperform Avast, due to memory scanner. Something Avast still hasn’t implemented.

Then this also. I'm not trying to corner Trident, as I respect the heck out of him and his posts and insights on the forum.

In terms of terminating connections, both Avast Web Shield and Bitdefender terminate connections to malicious C&C servers. They are both very good at that. Both of them usually start remediation process, further removing components which are causing this malicious connection.

I know I'm repeating myself, but with the features of Avast/AVG free, the settings, Ransomware (strict mode as well), Firewall notifications, ability to easily right-click pause protection, in daily use, doesn't that also factor into what to use?

 

[Trident]

@Jonny Quest the anti-ransomware module of Avast and AVG is very much based on the trusted/untrusted concept. Whilst it may block some ransomware, it won’t help when there is code injection in a trusted process. Same goes for the firewall prompt, which as well is very much trusted/untrusted executable based. The strict mode is likely to cause false alerts.

The paid Bitdefender editions with memory and command line scanner can deal more effectively with code injection before it has happened. Whatever the obfuscation attackers have used, will be “peeled” in memory and the malware will reveal its true, naked form. This greatly enhances chances of early detection, specially when yara rules on process memory are used. Attackers can take the same payload and create tens of thousand of versions of it, by changing the packaging and obfuscation. The real payload remains the same, and with memory scanning, it is always detected.

The benefits of memory scanning are enormous.

The paid Bitdefender editions also includes ransomware remediation, which in Avast products is not available.

So all in all, Bitdefender Antivirus + and above. provide better protection against advanced attacks than Avast Free and Paid.

The firewall in Avast Free is a nice addition but the same can be achieved with Windows Firewall.