Troubleshoot Which Internet Security Suite comes with Advanced Persistent Threat (APT) Protection?

[HarborFront]

There's an old thread here

How Advanced Persistent Threat works?

And endpoint solutions from AV vendors do have this feature.

BTW, nProtect Anti-Virus/Spyware comes with this feature as well

nProtect Anti-Virus/Spyware V4.0

So, can users please check whether your Internet Security Suite comes with this feature?

Thanks

 

[shmu26]

This is not a single feature. It is a general measure of how well the AV protects you.
Any security soft can claim they protect against APT, just like they claim to protect against malware.

 

[XhenEd]

Theoretically speaking, any proactive features/solutions will greatly increase one's protection against APT.

SRP, Anti-exe, HIPS, BB, (any default-deny), etc. are examples of proactive solutions. These may not totally prevent APT, but the probability of infection will decrease substantially.

 

[HarborFront]

This is not a single feature. It is a general measure of how well the AV protects you.
Any security soft can claim they protect against APT, just like they claim to protect against malware.

You are right. Checking a feature may invoke a couple of features to provide APT protection.

So, in overall, can you state which ISS can protect against APT? I'm not talking of endpoint software for they come with this protection

 

[XhenEd]

You are right. Checking a feature may invoke a couple of features to provide APT protection.

So, in overall, can you state which ISS can protect against APT? I'm not talking of endpoint software for they come with this protection

Kaspersky Internet Security, Bitdefender Internet Security, Avast Internet Security, Emsisoft AntiMalware, etc.

A reason Advanced Persistent Threats (APTs) are not so much an issue for home users is that they are time, effort and money-consuming. The target of the attack has to be important for the attacker, for whatever reason. Usually, VIPs, like politicians and businessmen, are the targets, not the home users (unless a home user is a mortal enemy of a hacker).

This is not to say home user versions of AVs are negligent. Home version AVs still protect against some forms of APTs, but these AVs don't employ very advanced detection/prevention of APTs due to a reason above, and that utilizing advanced techniques require more PC resources, which may slow down PC performance.

 

[HarborFront]

Besides nProtect AVS I can only can find Bullguard IS (2013) mentioned it protects against APT.......too bad the latest version is no longer offering this protection. Can't find such mention in other ISS

BullGuard Launches its Most Advanced Internet Security Software Suite Yet

 

[XhenEd]

If I remember correctly, Kaspersky (home version) had a separate module against advanced attacks, like APT. It was called ZETA Shield (Zero-day, Exploits and Targeted Attacks Shield).

But this module was removed and, according to Support, "transferred" to the main infrastructure server. So, instead of being a local module, it became a sig-based or cloud-based module.

So, Kaspersky (home) still protects against APT. But I'm not entirely sure about the current presence of ZETA Shield. Maybe it's still functioning in the server, or revised for the better (or worse), or taken down completely.

 

[HarborFront]

If I remember correctly, Kaspersky (home version) had a separate module against advanced attacks, like APT. It was called ZETA Shield (Zero-day, Exploits and Targeted Attacks Shield).

But this module was removed and, according to Support, "transferred" to the main infrastructure server. So, instead of being a local module, it became a sig-based or cloud-based module.

So, Kaspersky (home) still protects against APT. But I'm not entirely sure about the current presence of ZETA Shield. Maybe it's still functioning in the server, or revised for the better (or worse), or taken down completely.

Zeta Shield is mentioned here for KIS 2017

Kaspersky Internet Security 2017 Software Review - Antivirus Software Ratings

but likely a handicapped version down the line as mentioned here by Eugene himself

Alas, in KIS 2014 ZETA Shield has had to be handicapped a little in the interests of productivity: The home version works only with files and only in on demand mode.

Kaspersky Internet Security 2014 Review | Kaspersky Blog | Nota Bene: Eugene Kaspersky's Official Blog

 

[HarborFront]

OK KIS 2018 also has it

Kaspersky Internet Security 2018 18.0.0.405 - Download - COMPUTER BILD

Translated

Cloud Protection: Secure by swarm intelligence

The classic virus scanner identifies harmful objects based on current virus definitions, which are regularly supplemented by an online update. In addition, Kaspersky uses "cloud protection" to detect new malware. If a virus detects malicious software on a PC, a cloud module sends the findings to a central database of the manufacturer. After an analysis and preparation by the specialists of Kaspersky, this information is available to all other users. Through such user networking, new threats can be detected more quickly and more reliably, including spam filters and phishing protection. The "Automatic exploit protection" also monitors the functionality of your installed programs in order to neutralize possible security gaps. In addition, the ZETA Shield "ZETA Shield" detects malware, which has been embedded in other program components.

 

[XhenEd]

Zeta Shield is mentioned here for KIS 2017

Kaspersky Internet Security 2017 Software Review - Antivirus Software Ratings

but likely a handicapped version down the line as mentioned here by Eugene himself


Kaspersky Internet Security 2014 Review | Kaspersky Blog | Nota Bene: Eugene Kaspersky's Official Blog

I don't think that review is valid. Even official Kaspersky blogs/news don't mention ZETA Shield anymore.

Nowhere can you see in recent KIS releases about ZETA Shield being bragged by Kaspersky. It was bragged in the release and promotion for KIS 2014. But in the subsequent releases, it's as if it was never there.

And, it's the technical Support team that told me about ZETA Shield's status.

 

[HarborFront]

Actually, I'm looking highly towards ESET IS. Not sure whether it comes with such protection

 

[HarborFront]

I don't think that review is valid. Even official Kaspersky blogs/news don't mention ZETA Shield anymore.

Nowhere can you see in recent KIS releases about ZETA Shield being bragged by Kaspersky. It was bragged in the release and promotion for KIS 2014. But in the subsequent releases, it's as if it was never there.

And, it's the technical Support team that told me about ZETA Shield's status.

Yes, tech support was right. Zeta Shield and KATA (Kaspersky Anti Targeted Attack) are both protection for enterprise endpoint solutions.

 

[Deleted member 178]

APTs are more corporate threats than Home user ones...unless they transform your machine into a botnet's zombie.

 

[Sunshine-boy]

Trend micro.

 

[HarborFront]

APTs are more corporate threats than Home user ones...unless they transform your machine into a botnet's zombie.

That's how DDoS comes about which makes use of bots. However, a bot can also make to steal your privacy info for a long period of time

 

[HarborFront]

Trend micro.

I believe only for its enterprise security suite

 

[Davidov]

Immunet 6
Advanced Threat Prevention (ATP) detects, analyzes, and prevents threats from malware that has evolved to bypass traditional security methods.

 

[HarborFront]

Immunet 6
Advanced Threat Prevention (ATP) detects, analyzes, and prevents threats from malware that has evolved to bypass traditional security methods.

I think Advanced Threat Prevention is different from Advanced Persistent Threat Protection

 

[HarborFront]

Heimdal Pro has it too

 

[Sunshine-boy]

have it

Meet the APT:notworthy: