- May 22, 2012
- 32
An alarming trend seems to be showing up in a lot of security suites. Detection of zero-day threats is at an all time low. A zero-day threat is a piece of malware that is new enough that it has not yet been detected by an anti-malware company and thus they do not have a signature for it. Several high profile antivirus and anti-malware suites have failed this portion of testing ever since it was implemented in the Malware Geek standard test in September. The group includes Symantec's Norton Internet Security, McAfee Internet Security, avast! Antivirus, Avira Antivirus, Sunbelt's Vipre Internet Security, Dr. Web Security Space Pro, and Webroot SecureAnywhere. What is up? All of these well known and well respected security suites are lagging behind the times and are falling victim to unknown, silent malware. You would think that these well known companies would surely have some sort protection for those threats that they do not have a signature for. However, it is exactly the opposite. Are they just waiting for a bigger and more destructive piece of malware to come along before they do something about it? With hundreds of new pieces of malware released on a daily basis, you CANNOT rely solely upon signatures to catch everything.
>http://malware-geek.blogspot.com/2011/11/zero-day-detection-where-is-it.html
>http://malware-geek.blogspot.com/2011/11/zero-day-detection-where-is-it.html