Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Security Statistics and Reports
Learn more about Remediation Time – response time to security incidents (the results from protection test in January 2023)
Message
<blockquote data-quote="Adrian Ścibor" data-source="post: 1025889" data-attributes="member: 71496"><p><strong>Dear MalwareTips Users and Community,</strong></p><p></p><p>We already have the results for January 2023 published. By the way - thank You for voting us in <a href="https://malwaretips.com/threads/av-c-survey-2023.119171/#post-1024938" target="_blank">AV-Comparatives Survey</a>! We took place 3rd! Amazing <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite138" alt=":geek:" title="Geek :geek:" loading="lazy" data-shortname=":geek:" /></p><p></p><p><strong><span style="font-size: 18px">Remediation Time in test</span></strong></p><p></p><p>Starting from this edition, in order to stand out more from other testing laboratories as precursors in the security industry, we introduce a new comparative feature – the so-called “response time to a threat and resolve security incident” – <strong>Remediation Time</strong>. We will measure it for each tested product for home and business to further highlight the differences between protection software when confronted with threats in the wild (coming from the Internet).</p><p></p><p>In other words: in the Sysmon logs we have the UTC time logged for:</p><p></p><p>1. Downloading malware via Firefox.</p><p>2. If the product doesn't stop it at an early stage, a run occurs. If a threat detection by any technology has occurred, we have such a time logged, e.g. as "moved to quarantine", or "blocked on firewall" or different method.</p><p></p><p>From point 1 to point 2 this is known as <strong>a Remediation Time</strong>.</p><p></p><p>Remediation Time Average reports on the <a href="https://avlab.pl/en/recent-results/" target="_blank">Recent Results</a> webpage. From the next edition onwards, each product will have its own website with more detailed technical information and awards won. Give us some more time, please <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /></p><p></p><p><strong><span style="font-size: 18px">Threat Landscape in January 2023</span></strong></p><p></p><p>We have prepared the following summary based on the logs collected from the Sysmon tool in Windows 10 and database with collected information from the test:</p><ul> <li data-xf-list-type="ul"><strong>11</strong> security solutions took part in the test.</li> <li data-xf-list-type="ul">Ultimately, we used <strong>447</strong> unique URLs with malware.</li> <li data-xf-list-type="ul">Exactly <strong>381</strong> malware samples were hosted with HTTP.</li> <li data-xf-list-type="ul">Websites encrypted with HTTPS (in theory – safe) contained <strong>66</strong> malware samples.</li> <li data-xf-list-type="ul">During the analysis, each malware samples took on average <strong>28</strong> potentially harmful actions in Windows 10.</li> <li data-xf-list-type="ul">Most malware originated from servers located in <strong>the Netherlands, Russia and USA</strong>.</li> <li data-xf-list-type="ul"><strong>.com, .org, .za</strong> domains were mostly used to host malware.</li> <li data-xf-list-type="ul">The average detection of URLs or malicious files at the PRE-Launch level was <strong>58%</strong>.</li> <li data-xf-list-type="ul">At the POST-Launch level, file detection was on average <strong>38%</strong>.</li> </ul><p>Full publication is published on website: <a href="https://avlab.pl/en/learn-more-about-remediation-time-january-2023/" target="_blank">Learn More About Remediation Time – Response Time To Security Incidents. The Results From Protection Test In January 2023 » AVLab Cybersecurity Foundation</a></p></blockquote><p></p>
[QUOTE="Adrian Ścibor, post: 1025889, member: 71496"] [B]Dear MalwareTips Users and Community,[/B] We already have the results for January 2023 published. By the way - thank You for voting us in [URL='https://malwaretips.com/threads/av-c-survey-2023.119171/#post-1024938']AV-Comparatives Survey[/URL]! We took place 3rd! Amazing :geek: [B][SIZE=5]Remediation Time in test[/SIZE][/B] Starting from this edition, in order to stand out more from other testing laboratories as precursors in the security industry, we introduce a new comparative feature – the so-called “response time to a threat and resolve security incident” – [B]Remediation Time[/B]. We will measure it for each tested product for home and business to further highlight the differences between protection software when confronted with threats in the wild (coming from the Internet). In other words: in the Sysmon logs we have the UTC time logged for: 1. Downloading malware via Firefox. 2. If the product doesn't stop it at an early stage, a run occurs. If a threat detection by any technology has occurred, we have such a time logged, e.g. as "moved to quarantine", or "blocked on firewall" or different method. From point 1 to point 2 this is known as [B]a Remediation Time[/B]. Remediation Time Average reports on the [URL='https://avlab.pl/en/recent-results/']Recent Results[/URL] webpage. From the next edition onwards, each product will have its own website with more detailed technical information and awards won. Give us some more time, please :) [B][SIZE=5]Threat Landscape in January 2023[/SIZE][/B] We have prepared the following summary based on the logs collected from the Sysmon tool in Windows 10 and database with collected information from the test: [LIST] [*][B]11[/B] security solutions took part in the test. [*]Ultimately, we used [B]447[/B] unique URLs with malware. [*]Exactly [B]381[/B] malware samples were hosted with HTTP. [*]Websites encrypted with HTTPS (in theory – safe) contained [B]66[/B] malware samples. [*]During the analysis, each malware samples took on average [B]28[/B] potentially harmful actions in Windows 10. [*]Most malware originated from servers located in [B]the Netherlands, Russia and USA[/B]. [*][B].com, .org, .za[/B] domains were mostly used to host malware. [*]The average detection of URLs or malicious files at the PRE-Launch level was [B]58%[/B]. [*]At the POST-Launch level, file detection was on average [B]38%[/B]. [/LIST] Full publication is published on website: [URL='https://avlab.pl/en/learn-more-about-remediation-time-january-2023/']Learn More About Remediation Time – Response Time To Security Incidents. The Results From Protection Test In January 2023 » AVLab Cybersecurity Foundation[/URL] [/QUOTE]
Insert quotes…
Verification
Post reply
Top
