- Mar 17, 2015
- 370
Google Security Expert Criticizes Meaningless Antivirus Excellence Awards
- Thread starter bunchuu
- Start date
- Dec 15, 2015
- 29
I'm actually REALLY happy someone said this.
Because I think Antiviruses suck too, I think they are insecure as hell. After working for AVG for a few years I have gained a bunch of knowledge of not only antivirus software but also that antiviruses kind of stink.
Often if you are a security expert you are better off not using an antivirus. Antivirus can expose vulnerabilities on your system and expose it to more threats. This is not because they want to do that it's because software is exploitable.
And so it makes sense that the more software you INSTALL (installing itself into the filesystem, Registry and running in the background) can increase vulnerabilities. This is why I don't use antivirus, I prefer trusting myself and not using antivirus software. You also learn a lot more that way because you if you have to find out whether a random application is malware without using any scanners it can increase your malware-analysis skills significantly.
And that is another reason why I don't use antivirus.
But to the point, Are AV certifications bogus?
I don't beileve they are entirely bogus. I just think it's a really stupid game, because it's almost like they praise those who are the good guys. I think more credit should be given to the smaller guys who make software which is actually good. You're better off patching your system, using a good firewall (Windows Firewall) and keeping Windows Defender.
Windows Defender has some significant improvements, if you want to use a companion scanner but seriously, Windows Defender protects a lot better some a lot of antiviruses currently when you go in depth. It integrates with Secure Boot for example. so right after the OS is verified Windows Defender boots, this is a great feature and not only that but having an antivirus integrated into the OS makes it much more stable, secure and allows it to integrate with actual Microsoft Techologies.
Because I think Antiviruses suck too, I think they are insecure as hell. After working for AVG for a few years I have gained a bunch of knowledge of not only antivirus software but also that antiviruses kind of stink.
Often if you are a security expert you are better off not using an antivirus. Antivirus can expose vulnerabilities on your system and expose it to more threats. This is not because they want to do that it's because software is exploitable.
And so it makes sense that the more software you INSTALL (installing itself into the filesystem, Registry and running in the background) can increase vulnerabilities. This is why I don't use antivirus, I prefer trusting myself and not using antivirus software. You also learn a lot more that way because you if you have to find out whether a random application is malware without using any scanners it can increase your malware-analysis skills significantly.
And that is another reason why I don't use antivirus.
But to the point, Are AV certifications bogus?
I don't beileve they are entirely bogus. I just think it's a really stupid game, because it's almost like they praise those who are the good guys. I think more credit should be given to the smaller guys who make software which is actually good. You're better off patching your system, using a good firewall (Windows Firewall) and keeping Windows Defender.
Windows Defender has some significant improvements, if you want to use a companion scanner but seriously, Windows Defender protects a lot better some a lot of antiviruses currently when you go in depth. It integrates with Secure Boot for example. so right after the OS is verified Windows Defender boots, this is a great feature and not only that but having an antivirus integrated into the OS makes it much more stable, secure and allows it to integrate with actual Microsoft Techologies.
I've lost all my hope on AV testers (say AV-COMPARATIVES, AV-TEST and every one of them). Firstly, it was obvious and easy to see how tests were guided by the company that offered the bigger reward to the testing organization. As a matter of fact, it's imperative to highlight that those antivirus vendors who get in discussions with this kind of certificators are often magically disqualified. (gonna search the web and give you later the link to one of this articles). To example, it's hilarious to see how AV-COMPARATIVES has not tested Symantec products in years. Norton is beating the market lately.
What Google's expert says is totally true. Most antivirus keep downgrading their quality, and as times passes we see more and more malicious sample get missed. I remember back when antivirus used to lock and stop lots of malware out there. Now, if i'm not mistaken, i've read security softwares are blocking less than 10% actual malware. Still, one has to use one to at least be protected.
If we talk about Comodo, it's something i've always said. Comodo Internet Security on itself is a very low-quality level product. Firewall is basic, still it offers some nice control over the registry. And support is simply useless. Everyone who has every contacted them can tell you their only aim is to sell you products, even when you've bought their main one. I remember the first time i used Comodo Support tool built on the firewall, this tech guy used remote access to touch two or three files, and tell me he had to fix it, so i had to buy the product to get assisted. He even opened the browser, and displayed the Comodo Official Website. Navigated through it and clicked on BUY. And he kept writing: "now here put your credit card number, here the security code". He wouldn't even leave the control acess software to let me do it.
To conclude, i think the best tests are done by ourselves. Those ones are the smartest and most clever, since softwares do not behave the same on every system.
What Google's expert says is totally true. Most antivirus keep downgrading their quality, and as times passes we see more and more malicious sample get missed. I remember back when antivirus used to lock and stop lots of malware out there. Now, if i'm not mistaken, i've read security softwares are blocking less than 10% actual malware. Still, one has to use one to at least be protected.
If we talk about Comodo, it's something i've always said. Comodo Internet Security on itself is a very low-quality level product. Firewall is basic, still it offers some nice control over the registry. And support is simply useless. Everyone who has every contacted them can tell you their only aim is to sell you products, even when you've bought their main one. I remember the first time i used Comodo Support tool built on the firewall, this tech guy used remote access to touch two or three files, and tell me he had to fix it, so i had to buy the product to get assisted. He even opened the browser, and displayed the Comodo Official Website. Navigated through it and clicked on BUY. And he kept writing: "now here put your credit card number, here the security code". He wouldn't even leave the control acess software to let me do it.
To conclude, i think the best tests are done by ourselves. Those ones are the smartest and most clever, since softwares do not behave the same on every system.
- Mar 23, 2015
- 555
I am curious about what security config would Google's expert use if he was required to use Windows? (Well I know they use Mac at work...I am just curious 
)
)
- Mar 17, 2015
- 370
For me, I still rely on AV since I don't have adequate skill and expertise in computer security. I think AV dev shall improve their software and I agree that WD improved significantly after W10 launched.
- Aug 2, 2015
- 4,286
So more or less AV certification is now being run by politicians in the format of special interest donations lol
Seriously though I get it and agree, this has not been a secret for quite some time now, The fact that this is an award offered by Verizon is laughable, I will get excited and cause a stir when notable AV labs start pushing Comodo as "cream of the crop". PeAcE
Nice share bunchuu, Thank You.
lolSeriously though I get it and agree, this has not been a secret for quite some time now, The fact that this is an award offered by Verizon is laughable, I will get excited and cause a stir when notable AV labs start pushing Comodo as "cream of the crop". PeAcE
Nice share bunchuu, Thank You.
This is an important fact quoted from above:
"His point is that the vendors of these security products do very little testing on their own codebases, and leave trivial security holes that are extremely easy to detect for any security expert, and probably hackers as well."
Anyone who is familiar with security softs knows this implicitly after being around for a while. The low-level, guinea-pig user, beta testing model that the security soft industry relies so heavily upon just doesn't cut it.
With more and more reports about all security soft suites, it is obvious that industry standards leave something to be desired. The quality of security softs - with all their "advanced features" - is really suspect.
However, a lot of the security soft vendors state that most of these type of findings - while, indeed, a vulnerability - are difficult for the typical malware publisher to exploit. The word typical is important - since the typical malware publisher isn't very sophisticated according to the industry.
This stuff should be certainly thought-provoking, if not confusing, to the user who just wants to protect their system.
The bottom line is this - if a user configures their system and introduces unknown files to the system very little, makes informed decisions and uses good judgment online - then those safe behaviors - will go a very long way in mitigating most of the security risks. Add a few security and related softs based upon actual usage needs, and the typical safe user will never see an infection.
Anyone who doubts this position, just ask @Huracan. He used only Windows Defender and Windows Firewall for over 6 years, and never got infected.
"His point is that the vendors of these security products do very little testing on their own codebases, and leave trivial security holes that are extremely easy to detect for any security expert, and probably hackers as well."
Anyone who is familiar with security softs knows this implicitly after being around for a while. The low-level, guinea-pig user, beta testing model that the security soft industry relies so heavily upon just doesn't cut it.
With more and more reports about all security soft suites, it is obvious that industry standards leave something to be desired. The quality of security softs - with all their "advanced features" - is really suspect.
However, a lot of the security soft vendors state that most of these type of findings - while, indeed, a vulnerability - are difficult for the typical malware publisher to exploit. The word typical is important - since the typical malware publisher isn't very sophisticated according to the industry.
This stuff should be certainly thought-provoking, if not confusing, to the user who just wants to protect their system.
The bottom line is this - if a user configures their system and introduces unknown files to the system very little, makes informed decisions and uses good judgment online - then those safe behaviors - will go a very long way in mitigating most of the security risks. Add a few security and related softs based upon actual usage needs, and the typical safe user will never see an infection.
Anyone who doubts this position, just ask @Huracan. He used only Windows Defender and Windows Firewall for over 6 years, and never got infected.
Similar threads
