Viruses/Worms News

If at first you don't succeed: Most malware protection fails first round of certification testing

Tuesday, November 17, 2009

A study performed by security testing and research firm ICSA Labs says that almost four out of five computer security products fail their first certification tests and need to be retooled for a second and sometimes a third attempt.

The most common reason for a product to fail initial testing was a problem with core functionality, meaning that the software simply did not perform the tasks that it was designed to perform. ICSA gives the examples of an anti-virus program failing to detect viruses and an intrusion protection system not monitoring malicious network traffic.

Logging failures were the second most common hurdle that first-timers had trouble with. ICSA says that many vendors seem to consider logging simply a "box to check," rather than a core facet of a security product's functionality. Fully 97 percent of network firewalls experienced some logging failures during initial testing.

Computer security professionals say that they're falling behind in the race to keep computers safe from malicious code. The increasing organization and sophistication of cyber criminals makes for a difficult security climate.ADNFCR-1765-ID-19465129-ADNFCR

Related News:

Age-old trick with brand-new target - 1.18.2010
Cyber criminals have turned to a scam from the early days of the internet to target the growing smartphone market: Trojan phone dialers.

Report: 'At least 34' firms attacked at the same time as Google - 1.15.2010
The Washington Post asserts that many U.S. companies were targeted in the same network security and email breach that affected Google and provoked the company's highly publicized spat with the Chinese government.

Gumblar botnet builder resurfaces with a vengeance - 1.7.2010
Though security researchers had believed it to be more or less dormant, the Gumblar malware came storming back into prominence at the turn of the decade, performing what Softpedia calls a "mass injection attack" on computers and websites around the world.

Symantec endpoint protection suffers from updating issue - 1.7.2010
As 2009 turned into 2010, users of Symantec's Endpoint Protection Manager ran into trouble with updates for the program, as any patches released after the end of 2009 were misidentified as being out-of-date.

Experts laud heuristic detection as necessary backup to signature-based solutions - 1.6.2010
Anti-virus programming experts say that behavioral or heuristic detection of malware will become increasingly important to safeguarding computer systems, as modern malware becomes more and more difficult to detect using traditional methods.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now