Other articles |
Free Anti-Virus Software – Good or Bad?Use it? Written by Ben Chai (SecurityVibes.com)
Published on Monday 6 July 2009 0 comment(s) | Subnetwork United Kingdom Some AV Vendors have been claiming that it is foolhardy for consumers to use free AV software. SecurityVibes investigates. In an interview with Blorge.com, David Hall, Symantec’s Product Manager Asia-Pacific Consumer Products and Solutions, was reported to have said, “If you are only relying on free antivirus to offer you protection in this modern age, you are not getting the protection you need to be able to stay clean and have a reasonable chance of avoiding identity theft.” This is actually an incredible statement coming from Symantec. Mention Symantec’s anti-virus software at a techie meeting and you will often see people’s eyes roll with comments such as bloatware and jokes about the Symantec product being the virus itself, with many having major problems removing the Symantec AV product even when using the Symantec removal tool! Hall went on further to comment on Microsoft’s Microsoft Security Essentials offering as an incomplete solution. “Microsoft’s free product is basically a stripped down version of the OneCare product Microsoft pulled from retail shelves. Consumers don’t need less protection, they need more.” The fact is no virus checker free or not is failsafe. It is a myth. Consumers also don’t need more protection, they just need protection that works and in spite of the best endeavours of the AV industry, it is failing to provide protection that works. There are many reasons for this mostly to do with the fact that there are many known methods to bypass Antivirus software and as can be seen in the diagram below the Antivirus software itself has provided hackers an opportunity to compromise every single system within an organisation due to the fact that it integrates into the core of your operating system and many AV vendors are not using secure coding techniques.
The diagram above illustrates just how open to attack AV can make your entire organisation. It is from an article called the Death of Defence in Depth about how your AV solution can work against you by bypassing your entire defence system and also gives line by line descriptions of simple techniques hackers regularly use to bypass your AV defence. Drive by downloads “If you look how most infections are coming now, they are coming from drive-by download, and while these often do come through the web browser, attackers are not necessarily only targeting the web browser. Think about all the plug-ins you have installed on your machine – RealPlayer, Flash, QuickTime – all of these have vulnerabilities too. With free antivirus software you may or may not be updating against these vulnerabilities, and we’ve seen that more than half of the attacks are getting browser plug-ins rather than the browser itself. That’s why free antivirus is not enough: you need in-depth layered technologies, which only come from the more mature paid suites. Imagine what it must be like for somebody who is not actually charging to be able to pay their security researchers to be able to keep up. We’ve made more virus definitions last year than we have in the last 10 years.” Summary References Tech.Blorge: Symantec: It’s Dangerous to Rely on Free Antivirus Nruns.com: Death of Defence in Depth PDF SecurityVibes article: Best Virus Checkers No Defence Against Modern Malware DarkReading: You're Not Paranoid, Your Antivirus Just Doesn't Work Well AV-Comparatives.org: Virus checker comparison
Our members have posted 0 comments about this article. Only members can view and submit new comments.
Related contents
|
Advertising
Related Questions & Answers
 Linux to Virus Check or Not (2 Answers)
FOSDEM 2010 - Bruxelles, Belgique (0 Answers)
To be or not to be... (3 Answers)
Appointing a Data Protection Officer (DPO) (3 Answers)
Related companies
Search
Our RSS Feeds
Social Web
|
|||||||||||||||||||||
Article
2
0
0
