Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Browsers
Web Extensions
[Updated 29/12/2018] Browser extension comparison: Malwares and Phishings
Message
<blockquote data-quote="Trident" data-source="post: 1035040" data-attributes="member: 99014"><p>More or less all of them use the same technology.</p><p></p><p>They use crawlers and automated analysis that will look for brand impersonation, suspicious Whois data and other signs. Many of them perform JIT (also called on-the-fly) analysis but there are several factors that will divide products in winner and loser groups:</p><p></p><ul> <li data-xf-list-type="ul">How effective the heuristics are (depends on researchers and data scientists there)</li> <li data-xf-list-type="ul">How well the security vendor knows banks around the world</li> <li data-xf-list-type="ul">How effective and resistant to “fooling” the automated analysis is</li> <li data-xf-list-type="ul">How many users the product has — the more users, the more websites will be submitted for analysis</li> <li data-xf-list-type="ul">How big is the “honeynet” that captures phishing and SPAM</li> <li data-xf-list-type="ul">Other proprietary technologies such as page fingerprinting, etc.</li> </ul><p>Symantec/Norton use page fingeprinting, IPS (Deep Packet Inspection), reputation, heuristics, denylist and others.</p><p>I would assume Kaspersky uses all that too (excluding IPS). Eset boosts the phishing detection by adding heuristics to the antivirus engine.</p><p></p><p>Yes, it is not possible to identify 100% of all Phishing pages, just like it’s not possible to identify 100% of all malware or SPAM due to the lack of predictability.</p><p></p><p>Users should be looking at the URL carefully and should ensure that they enter their information on the correct page. A bank or an institution will never send them an email asking for personal information — any bank knows more about its clients than they know about themselves.</p><p>It’s always better to contact an institution directly over the phone or through their mobile app.</p><p></p><p>Solutions like F-Secure with its banking protection that adds a green border are useful as well - users can make sure they use genuine website by looking for the green border.</p></blockquote><p></p>
[QUOTE="Trident, post: 1035040, member: 99014"] More or less all of them use the same technology. They use crawlers and automated analysis that will look for brand impersonation, suspicious Whois data and other signs. Many of them perform JIT (also called on-the-fly) analysis but there are several factors that will divide products in winner and loser groups: [LIST] [*]How effective the heuristics are (depends on researchers and data scientists there) [*]How well the security vendor knows banks around the world [*]How effective and resistant to “fooling” the automated analysis is [*]How many users the product has — the more users, the more websites will be submitted for analysis [*]How big is the “honeynet” that captures phishing and SPAM [*]Other proprietary technologies such as page fingerprinting, etc. [/LIST] Symantec/Norton use page fingeprinting, IPS (Deep Packet Inspection), reputation, heuristics, denylist and others. I would assume Kaspersky uses all that too (excluding IPS). Eset boosts the phishing detection by adding heuristics to the antivirus engine. Yes, it is not possible to identify 100% of all Phishing pages, just like it’s not possible to identify 100% of all malware or SPAM due to the lack of predictability. Users should be looking at the URL carefully and should ensure that they enter their information on the correct page. A bank or an institution will never send them an email asking for personal information — any bank knows more about its clients than they know about themselves. It’s always better to contact an institution directly over the phone or through their mobile app. Solutions like F-Secure with its banking protection that adds a green border are useful as well - users can make sure they use genuine website by looking for the green border. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
