Advertisement
Promo

Security threats Toolkit

Secunia: Security suites not blocking exploits

Robert Vamosi CNET News

Published: 16 Oct 2008 11:06 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

A new report from Secunia aims to raise awareness about the need to patch vulnerabilities and block malware from desktops.

The report found that "security vendors do not focus on vulnerabilities". While Symantec Norton Internet Security 2009 bested the 11 other suites tested, Secunia found that the product "detected a mere 64 out of 300 exploits, or less than one-fourth, leaving 236 exploits undetected". Overall, the 12 products tested all received an 'F' in the report.

The Secunia test departed from the traditional testing done by organisations such as AV-Test.org and AV-Comparatives.org, which use collections of malware to demonstrate the on-demand and heuristic capabilities of security products.

Secunia used exploits — not viruses and worms — to demonstrate the need for users to patch vulnerabilities, as well as have a good firewall, antivirus and other anti-malware protection.

The company said criminals are most likely to use exploits these days, and faulted the tested security vendors that said their products could protect against any threat.

Read this

Q&A
Trend Micro: Antivirus industry lied for 20 years

Chief executive Eva Chen argues antivirus companies have over-hyped the effectiveness of their products, and misled customers, for years...

Read more +

Secunia did single out one product, Kaspersky Internet Security, as providing a vulnerability scanner, yet Kaspersky also fared poorly on the test.

However, Alex Eckelberry of Sunbelt Software described Secunia's report as a "useless test", with others also criticising the methodology used.

There is a move within the security industry to standardise malware testing. The newly formed Anti-Malware Testing Standards Organization has stated that there is a "global need for improvement in the objectivity, quality and relevance of anti-malware testing methodologies".

The group is currently soliciting opinions on two papers, one on testing best practices and the other on fundamental principals for malware testing.

Credit: Secunia exploits security suites flaws from CNET News

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with EPSON

Did you find this article useful?


In association with HP

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:







Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

McKinnon lawyers seek judicial review

Lawyers seeking a judicial review for Nasa hacker Gary McKinnon lodged fresh evidence of his psychiatric state at the High Court on Thursday. Karen Todner, McKinnon's solicitor,... More

1 comment

Beware of keeping your head in the clo...

Information security professionals can look forward to a deepening appreciation for their skills as security continues to be recognised as an essential element for doing business in... More

1 comment

Civil liberties groups attack file-sha...

Civil liberties and digital rights organisations have strongly criticised Lord Mandelson's Digital Economy Bill. Liberty said in a position paper on Tuesday that the bill, part of... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters