Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
The Fallacy of Professional AV Tests
Message
<blockquote data-quote="ForgottenSeer 58943" data-source="post: 750827"><p>I assume most people already knew this. One can take any existing piece of malware and modify it slightly so it evades detection and it becomes a new threat, active and functional, until discovered, analyzed and signature updates are pushed. That's pretty much common knowledge and is showing the fallacy of signature based systems for the most part.</p><p></p><p>This is similar to my claim that blacklisting websites is a losing battle. Some people install 14 different extensions in Chrome 'hoping' to catch every possible malware site as soon as possible, but they'll always be a step behind. Fortinet is very good with categorizing new web threats, but even Fortinet is always a step behind.</p><p></p><p>This is why I am advocating, researching, and working on teams looking to evolve technology to the next level. These technologies are coming, eventually. Gryhon is the first 'home' system to exploit these new systems at any measurable level. Gryphon is quite nice in it's ML/AI IPS system in that it 'watches' your devices, then uses Bayes' theorem to develop a statistical history of how the device functions 'out of the box'. Bayes' theorem creates the normalcy metric and any variance of that causes the device to be quarantined as compromised and notify the owner (you) via alerts on the mobile app. As this system evolves, I believe it's one of the better technologies going forward.</p><p></p><p>IMO Fortinet is behind the curve on this as they still use mostly traditional methods and rely more on a security fabric for increasing awareness rather than prevention itself. Keep an eye out, a lot of firms are working to address the very problem CS posted about. It's only a matter of time.</p></blockquote><p></p>
[QUOTE="ForgottenSeer 58943, post: 750827"] I assume most people already knew this. One can take any existing piece of malware and modify it slightly so it evades detection and it becomes a new threat, active and functional, until discovered, analyzed and signature updates are pushed. That's pretty much common knowledge and is showing the fallacy of signature based systems for the most part. This is similar to my claim that blacklisting websites is a losing battle. Some people install 14 different extensions in Chrome 'hoping' to catch every possible malware site as soon as possible, but they'll always be a step behind. Fortinet is very good with categorizing new web threats, but even Fortinet is always a step behind. This is why I am advocating, researching, and working on teams looking to evolve technology to the next level. These technologies are coming, eventually. Gryhon is the first 'home' system to exploit these new systems at any measurable level. Gryphon is quite nice in it's ML/AI IPS system in that it 'watches' your devices, then uses Bayes' theorem to develop a statistical history of how the device functions 'out of the box'. Bayes' theorem creates the normalcy metric and any variance of that causes the device to be quarantined as compromised and notify the owner (you) via alerts on the mobile app. As this system evolves, I believe it's one of the better technologies going forward. IMO Fortinet is behind the curve on this as they still use mostly traditional methods and rely more on a security fabric for increasing awareness rather than prevention itself. Keep an eye out, a lot of firms are working to address the very problem CS posted about. It's only a matter of time. [/QUOTE]
Insert quotes…
Verification
Post reply
Top