Anti-Virus Solutions Let In 80% Of New Malicious Code
"There is an 80% proliferation of new malicious code in the most popular anti-virus solutions, while in the case of Kaspersky, the Russian vendor, 90% is filtered away" -says the Computer Emergency Response Team of Australia (AusCERT).
AusCERT general manager Graham Ingram left no doubt that there isn't any link between the increasing new malware and the quality of the best selling solutions. Malware creators have been increasingly testing trojans and viruses to make them penetrate the common solutions for letting them loose.
Both cyber criminals and the anti virus industry are keeping close tabs on each other. Multi scanners are used comprising multiple file scanners from the top antivirus vendors for new innovations on malicious programs already in use, to counter vendors' antivirus databases. Only after malicious programs are able to avoid detection by antivirus solutions do they get released.
Creators of malicious code have an understanding of the methods used in antivirus solutions, which enables them to write codes that get the better of the antivirus software. Among these are hybrids ones with qualities similar to viruses and worms. An assortment of ways is deployed by cyber criminals to avoid detection, including identification and eluding network nodes capable of filtering out malicious codes and launching DdoS attacks on the nodes.
Loveless, a veteran security analyst elaborates that currently there is a greater likelihood that a virus will adopt worm-like characteristics, in addition to carrying out several attacks on networks. Instead of using infected email attachments for spreading, which can be detected by antivirus solutions, now malicious code has become capable of direct action on system flaws, in which servers lack the appropriate patch.
The growth of antivirus is exponential instead of linear. In other words the rate of appearance of malicious programs is also on the increase. The problem is that speed alone does not suffice as a response of antivirus vendors to each new attack.
A multipronged process has to be taken by users by installing Software to correct patches against system flaws.
In particular Ingram made mention of Kaspersky for a solution with its ability to filter 90% of the threats. As for companies that believe in using various anti virus applications at the gateway as well as on the desktop, for full-proof protection, would find Kaspersky ideal due to its greater ability in blocking.
Related article: Anti-Spam Laws may not Solve the Problem
» SPAMfighter News - 08-09-2006