Serious Discussion Have you seen some malware escape KTS?

Bot

AI-powered Bot
Apr 21, 2016
4,423
While Kaspersky Total Security (KTS) is highly effective, no antivirus is 100% foolproof. Users have reported instances of malware slipping through, but specific names vary. Always ensure your software is up to date for the best protection.
 
F

ForgottenSeer 114834

Have you seen malware that didn't get detected by Kaspersky? If so, what was it called? Etc
Correct me if I'm wrong but didn't you some time back go through your installation of Kaspersky disabling modules trying to allow an application and still it kept getting blocked? I believe you were asking how to whitelist it.

You have then seen the degree at which the product protects. Have you been infected recently? Is there a reason for such concern other than riding the fear train provided by the industry in tech news?
 

Studynxx

Level 4
Thread author
Jan 20, 2023
222
Correct me if I'm wrong but didn't you some time back go through your installation of Kaspersky disabling modules trying to allow an application and still it kept getting blocked? I believe you were asking how to whitelist it.

You have then seen the degree at which the product protects. Have you been infected recently? Is there a reason for such concern other than riding the fear train provided by the industry in tech news?
Yeah I think it was Cheat Engine. It's been solved since. Anyway I really like Kaspersky and I'm not sure I'll abandon it any time soon. I just don't see a valid alternative.

No I've not been infected in the last 2 years I think. I'm merely asking out of sheer curiosity. I'm not a 'malware hunter' so I don't purposefully run malware.

Hence I'm asking malware hunters if they've ever seen some malware escape KTS detection on a VM?
 
  • Like
Reactions: Dave Russo
F

ForgottenSeer 114834

Yeah I think it was Cheat Engine. It's been solved since. Anyway I really like Kaspersky and I'm not sure I'll abandon it any time soon. I just don't see a valid alternative.

No I've not been infected in the last 2 years I think. I'm merely asking out of sheer curiosity. I'm not a 'malware hunter' so I don't purposefully run malware.

Hence I'm asking malware hunters if they've ever seen some malware escape KTS detection on a VM?
This is the wrong place to look for that info, as I have stated before in other threads, in order to assess a products full abilities it requires real world testing of true routes of infection, which is something you will not find here. These tests here are good for seeing certain modules at play but do nothing to provide accurate results of a products full abilities. Since many products focus on prevention "pre execution" more so than post execution protections, this above is important to consider.
 
Last edited by a moderator:

Studynxx

Level 4
Thread author
Jan 20, 2023
222
This is the wrong place to look for that info, as I have stated before in other threads, in order to assess a products full abilities it requires real world testing of true routes of infection, which is something you will not find here. These tests here are good for seeing certain modules at play but do nothing to provide accurate results of a products full abilities. Since many products focus on prevention "pre execution" more so than post execution protections, this above is important to consider.
OK fine. But does KTS protect from / detect malicious scripts? ps1, py, bat, etc? I've never tested it against scripts. Just asking on the off chance of accidentally downloading malicious scripts from god knows where
 
F

ForgottenSeer 114834

OK fine. But does KTS protect from / detect malicious scripts? ps1, py, bat, etc? I've never tested it against scripts. Just asking on the off chance of accidentally downloading malicious scripts from god knows where
Yes KTS protects against Powershell, Python, and Batch files. Behavior based and Heuristic analysis are threat detection techniques used to identify and neutralize such threats.

Keep in mind nothing is 100%.
 

Trident

Level 34
Verified
Top Poster
Well-known
Feb 7, 2023
2,349
OK fine. But does KTS protect from / detect malicious scripts? ps1, py, bat, etc? I've never tested it against scripts. Just asking on the off chance of accidentally downloading malicious scripts from god knows where
Kaspersky provides broad detection and protection against anything that is malicious. As with other premium security systems, Kaspersky offers layered approach.

Layer 1) Malicious website and domain blocking, firewall. Blocks threats where they start — in the browser and on a network level.

Layer 2) Antivirus & preventive measures, such as IDS — uses highly innovative and developed antivirus engine to detect malware. Prevents execution of malicious objects with unfavourable reputation and restricts their access to system resources.

Layer 3) Post-execution layer (last line of defence). Includes behavioural blocking and monitoring, plus blocks connection to known malicious C&C domains to prevent additional malware from being planted on to the system, and data from being exfiltrated.
 

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,863
Yes, I have seen quite a few times in my own tests as well as other people's test, testing lab's test. Kaspersky is arguably the best AV product, but nothing can guarantee 100% protection. If you're using Kaspersky, stop worrying about the types of malwares it may miss once in a while.
 

SpiderWeb

Level 13
Verified
Top Poster
Well-known
Aug 21, 2020
609
Only cheat engines. But, in hindsight that was probably intentional and they got whitelisted. Kaspersky, out of all AVs has the best understanding of what tools are used for cheating, cracking and modding and what are not. My guess is because it was everyone's favorite AV during the filesharing/illegal downloading days in the early 2000s.

This is the only explanation I have because mods and cheat engines literally engage in file injection and modifying executable files in memory which their behavior blockers would easily catch. Other than that, unfortunately it also doesn't really care about PUPs and adware or anything that is perceived "malicious" but is easy to uninstall lol.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top