stefanos

Level 23
Verified
failed...by Scorpion

Kaspersky reprogrammed its antivirus to enhance the detection of unknown threats and named it Security Cloud.
With this release, the publisher offers intelligent software by relying on its KSN IA Machine Learning network.
The software is very light and very complete for a free software with a module to block unknown threats.
In web and file protection, the software reacts very quickly and efficiently.
Kaspersky even has the luxury of catching up with attacks when he did not recognize them!
Unfortunately, besides the Screenlocker, Kaspersky is fooled by the Ransomware scorpion.
As he finishes the infection, he does not restore the system changes and attacks that have been made.
Too bad, but Kaspersky remains an antivirus that we advise
 

Thirio

Level 3
Kaspersky free managed a superb detection rate about as good as you're going to see in any product.The fact still remains, all it takes is one piece of malware to damage the system. Users should still be backing up regularly as a precautionary measure and also consider adding Voodooshield or Comodo firewall for complete protection against unknown threats that Kaspersky free cannot defend. All in all good job Kaspersky the result did not surprise me.
 

Moonhorse

Level 26
Verified
Content Creator
Kaspersky free managed a superb detection rate about as good as you're going to see in any product.The fact still remains, all it takes is one piece of malware to damage the system. Users should still be backing up regularly as a precautionary measure and also consider adding Voodooshield or Comodo firewall for complete protection against unknown threats that Kaspersky free cannot defend. All in all good job Kaspersky the result did not surprise me.
but still always the user is making decision at last hand, anyone that is torrenting will torrent, and keep torrenting....still some of them are asking wich antivirus is the best when they decide to run keygens, install cracks etc.etc.

But for any average joe that is only doing browsing/ banking, even adblocker is playing very big role

On topic question: where do most ransomware come from? Like from torrents, ads> malicious sites, emails...any idea?

Because people making videos when they have the ransomware sample against antivirus,
And in reality, there is prevention before even getting that ransomware to your pc
 

stefanos

Level 23
Verified
but still always the user is making decision at last hand, anyone that is torrenting will torrent, and keep torrenting....still some of them are asking wich antivirus is the best when they decide to run keygens, install cracks etc.etc.

But for any average joe that is only doing browsing/ banking, even adblocker is playing very big role

On topic question: where do most ransomware come from? Like from torrents, ads> malicious sites, emails...any idea?

Because people making videos when they have the ransomware sample against antivirus,
And in reality, there is prevention before even getting that ransomware to your pc
Sandbox and one check at virus total. 2 min job and you have the best proactive protection
 

Allego

Level 2
I remember few months ago I also ran that Scorpion 3.1 against KIS in a VM. But we had slightly different results though, unlike the video, instead it shows the desktop, mine was it went immediately to BSOD. After the result, I immediately sent the sample to their virusdesk. I'm surprised that until this day they didn't still add this malware to their databases.
 

harlan4096

Level 61
Verified
Staff member
Malware Hunter
I've been performing some tests with KSCloud Free 2019 + KTS2019 (Interactive + Defaults) + KTS2019 (Interactive + Application Control -> Unknown applications to High Restricted)...

Only the 3rd case STOPPED INMEDIATELLY THE ATTACK, screen-shots comming soon at MWHub :)
 

devjit2018

Level 12
Verified
Malware Tester
I've been performing some tests with KSCloud Free 2019 + KTS2019 (Interactive + Defaults) + KTS2019 (Interactive + Application Control -> Unknown applications to High Restricted)...

Only the 3rd case STOPPED INMEDIATELLY THE ATTACK, screen-shots comming soon at MWHub :)
Can you please help me out in configuring KIS 2019 for maximum protection against these kinds of attacks?
 
  • Like
Reactions: Der.Reisende

harlan4096

Level 61
Verified
Staff member
Malware Hunter
I have already posted in this forums, in different threads a video with some strong tweaks for KTS/KIS...

Once again: https://cloud.qainfo.ru/s/PE0sE0YUlbvmetT

These ones may break some installations of legit applications if They still not so known at KSN, anyway You may low (Automatically or Low Restricted and enable Trust in digitally signed applications temporally) the security to install those applications You trust and again up the security.

Yes, of course move to Untrusted is a hardener tweak than mine -> High Restricted :)
 

devjit2018

Level 12
Verified
Malware Tester
I have already posted in this forums, in different threads a video with some strong tweaks for KTS/KIS...

Once again: https://cloud.qainfo.ru/s/PE0sE0YUlbvmetT

These ones may break some installations of legit applications if They still not so known at KSN, anyway You may low (Automatically or Low Restricted and enable Trust in digitally signed applications temporally) the security to install those applications You trust and again up the security.

Yes, of course move to Untrusted is a hardener tweak than mine -> High Restricted :)
Setting Application Control to High Restricted/Untrusted indeed does break some legit applications. @harlan4096 did you do any test using KTS default settings but with TAM ENABLED? With TAM enabled KTS/KIS should stop the attack hopefully.