• 0

March 2014 Real World Protection and File Detection Tests


Question

1 answer to this question

Recommended Posts

  • 0
riahc3

A thread with a monthly post about this report would be nice :)

  • Like 1
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

  • Similar Content

    • By Abhay V
      A host of anti-virus engines are flagging recent Dell printer drivers as unsafe
      by Abhay Venkatesh



      Recent releases of Dell printer drivers for various versions of Windows are being flagged by a number of anti-virus programs as malware, as spotted and reported by journalist Brian Krebs on Twitter (via WindowsCentral). A few examples of such reports can be viewed on Virus Total that provides logs of malware detection by various anti-virus programs.

      The drivers in question seem to include releases from Dell in the past few months, including one from September 24, detailed here. Krebs posted the results of the file in the logs on Virus Total, which show the file being flagged as “Malware” or “Trojans” by a number of programs including the likes of Avast, McAfee, Microsoft, Fortinet, and more. The logs suggest that at least 29 anti-virus engines detected the file as unsafe.

      It is currently not clear what is triggering these detections, and if the said files are safe for installation or have been compromised. Krebs suggests that users that are looking to download the latest drivers hold off on downloading them for the time being. It is possible that the computer maker re-releases the drivers after scrutiny or provides an update at the least about the reports and the validity of its driver offerings.



    • By Copernic
      Malwarebytes 4.2.2.95 (offline installer)
      by Razvan Serea



      Malwarebytes is a high performance anti-malware application that thoroughly removes even the most advanced malware and spyware. Malwarebytes version 4.xx brings comprehensive protection against today’s threat landscape so that you can finally replace your traditional antivirus.

      You can finally replace your traditional antivirus, thanks to a innovative and layered approach to prevent malware infections using a healthy combination of proactive and signature-less technologies. While signatures are still effective against threats like potentially unwanted programs, the majority of malware detection events already come from signature-less technologies like Malwarebytes Anti-Exploit and Malwarebytes Anti-Ransomware; that trend will only continue to grow. For many of you, this is something you already know, since over 50% of the users already run Malwarebytes as their sole security software, without any third-party antivirus.

      What is new in this version:

      Improved detection and remediation

      Improved performance

      Improved updating functionality

      Some Issues now addressed:

      Fixed: rundll32 AE block in Word

      Fixed: Mwac.sys BSOD: PAGE_FAULT_IN_NONPAGED_AREA under certain circumstances

      Fixed: Telemetry error "processPath is empty" after MWAC exclusion is added using tray

      Fixed: A few UI issues

      Fixed: Users report to lose connection (visibility) to the LAS or Network Neighborhood after upgrading to CU19*

      Download: Malwarebytes 4.2.2.95 | 185.0 MB (Free, paid upgrade available)
      Links: Malwarebytes Website | Screenshot

      Get alerted to all of our Software updates on Twitter at @NeowinSoftware

    • By Usama Jawad96
      Microsoft develops new machine learning model to detect password spray attacks
      by Usama Jawad

      Over the past few weeks, Microsoft has been promoting digital security efforts as a part of its observance of the National Cyber Security Awareness Month (NCSAM) in October. It has announced new initiatives to promote cybersecurity awareness, unveiled Zero Trust Deployment Center, released an Adversarial ML Threat Matrix, and launched a fairly successful offensive against the malicious Trickbot botnet.

      Now the company has stated that it has developed a new machine learning-based algorithm that detects password spray attacks with considerably improved performance than its previous mechanism.

      Image via Abine For those unaware, a password spray is a relatively crude and common form of cyberattack in which a malicious actor attacks tenants via thousands of IPs - using botnets in most cases - with a few commonly used passwords rather than trying numerous passwords against a single user. While this indicates that the success rate per account is quite nominal, it also means that the attack is very difficult to detect since it is spread out with such uneven consistency that a tenant may dismiss a couple of unsuccessful login attempts per account as part of the regular login pattern. So, this attack can only be detected across multiple tenants if you notice a single hash failing across numerous accounts.

      To counter password spray attacks, Microsoft previously built a heuristic mechanism in which the company observed "the core failure in the system in... worldwide traffic" and notified organizations at risk. Now, the company has improved this mechanism by training a new supervised machine learning algorithm that uses features such as IP reputation, unfamiliar login properties, and other account deviations to detect when a tenant is under attack from password spray.

      Microsoft claims that its new model has a 100% increase in recall compared to the heuristic algorithm. This means that it detects twice the number of compromised accounts. Furthermore, it also has a 98% precision, which means that if the model claims that an account has fallen victim to password spray, then this is almost certainly true across all such cases.

      The new model will be available soon to Azure AD Identity Protection customers, who will be able to utilize it in the portal and APIs for Identity Protection.

    • By Copernic
      NOD32 Antivirus / ESET Internet Security / Eset Smart Security Premium 14.0.22
      by Razvan Serea



      NOD32 for Windows is the best choice for protection of your personal computer. Almost 20 years of technological development enabled ESET to create state-of-the-art antivirus system able to protect you from all sorts of Internet threats. ESET Internet Security boasts a large array of security features, usability enhancements and scanning technology improvements in defense of your your online life.

      ESET Internet Security
      ESET Internet Security keeps your computer or laptop safe with intelligent multi-layered protection combining proven antivirus, antispyware, firewall, anti-rootkit and antispam capabilities. Based on ESET NOD32 Antivirus, it protects you from viruses, worms, spyware, and all Internet threats. It conserves resources and improves computer speed. You are protected at the highest level while you work, social network, play online games or plug in removable media.

      ESET NOD32 Antivirus
      Your best defense against viruses, trojans and other forms of malware—and the top choice for IT professionals. Powered by the ThreatSense® engine with advanced heuristics, which blocks far more unknown threats than the competition. The latest generation of the legendary ESET NOD32 Antivirus takes your security to a whole new level. Built for a low footprint, fast scanning, it packs security features and customization options for consistent and personalized security online or off.

      ESET Smart Security
      Ultimate protection for everyday web users, thanks to ESET’s trademark best balance of detection, speed and usability. Stay safe from viruses and spyware. Stay protected from ransomware - Blocks malware that tries to lock you out of your own data. Receive free support by email or telephone in your local language, wherever you are. Bank and shop online more safely - automatically secures transactions on internet banking sites, and helps to protect you on online payment gateways. Stop hackers from accessing your PC - Personal Firewall prevents hackers from gaining access to your computer and keeps you invisible when you use public Wi-Fi. Keep your kids safe online - block unwanted internet content by categories or individual websites and keep your kids safe online with Parental Control. Safer webcam and home router - Get an alert when anyone tries to access your webcam, and check your home router for vulnerabilities. Safely store passwords, and encrypt your data. Safely store, generate and prefill your passwords, and encrypt your files and removable media (USB keys). Includes protection for smartphones and tablets. Protect all of your devices - mix and match security protection for up to 3 or 5 devices.

      ESET Internet Security 14.0.21.0 changelog:

      Added: WMI Scanner Added: System Registry Scanner Improved: Product change feature (without OS restart) Improved: Highest product on license offered Improved: BPP "Secure all browsers" - enables user to run any browser in hardened mode by default Improved: Under the hood optimizations ESET Smart Security Premium 14.0.21.0:

      Added: WMI Scanner Added: System Registry Scanner Improved: Completely new Password Manager Improved: Product change feature (without OS restart) Improved: Highest product on license offered Improved: BPP "Secure all browsers" - enables user to run any browser in hardened mode by default Improved: Under the hood optimizations ESET NOD32 Antivirus 14.0.21.0:

      Added: WMI Scanner Added: System Registry Scanner Improved: Product change feature (without OS restart) Improved: Highest product on license offered Improved: BPP "Secure all browsers" - enables user to run any browser in hardened mode by default Improved: Under the hood optimizations v14.0.22 changelog:

      Fixed: Minor bugs Download: ESET NOD32 Antivirus 14.0.22.0 (32-bit) | NOD32 Antivirus 64-bit | ~180.0 MB (Free Trial)
      Download: ESET Internet Security 14.0.22.0 (32-bit) | ESET Internet Security 64-bit
      Download: Eset Smart Security Premium 14.0.22.0 (32-bit) | Eset Smart Security Premium 64-bit
      Link: ESET Home Page

      Get alerted to all of our Software updates on Twitter at @NeowinSoftware

    • By Copernic
      NOD32 Antivirus / ESET Internet Security / Eset Smart Security Premium 14.0.21.0
      by Razvan Serea



      NOD32 for Windows is the best choice for protection of your personal computer. Almost 20 years of technological development enabled ESET to create state-of-the-art antivirus system able to protect you from all sorts of Internet threats. ESET Internet Security boasts a large array of security features, usability enhancements and scanning technology improvements in defense of your your online life.

      ESET Internet Security
      ESET Internet Security keeps your computer or laptop safe with intelligent multi-layered protection combining proven antivirus, antispyware, firewall, anti-rootkit and antispam capabilities. Based on ESET NOD32 Antivirus, it protects you from viruses, worms, spyware, and all Internet threats. It conserves resources and improves computer speed. You are protected at the highest level while you work, social network, play online games or plug in removable media.

      ESET NOD32 Antivirus
      Your best defense against viruses, trojans and other forms of malware—and the top choice for IT professionals. Powered by the ThreatSense® engine with advanced heuristics, which blocks far more unknown threats than the competition. The latest generation of the legendary ESET NOD32 Antivirus takes your security to a whole new level. Built for a low footprint, fast scanning, it packs security features and customization options for consistent and personalized security online or off.

      ESET Smart Security
      Ultimate protection for everyday web users, thanks to ESET’s trademark best balance of detection, speed and usability. Stay safe from viruses and spyware. Stay protected from ransomware - Blocks malware that tries to lock you out of your own data. Receive free support by email or telephone in your local language, wherever you are. Bank and shop online more safely - automatically secures transactions on internet banking sites, and helps to protect you on online payment gateways. Stop hackers from accessing your PC - Personal Firewall prevents hackers from gaining access to your computer and keeps you invisible when you use public Wi-Fi. Keep your kids safe online - block unwanted internet content by categories or individual websites and keep your kids safe online with Parental Control. Safer webcam and home router - Get an alert when anyone tries to access your webcam, and check your home router for vulnerabilities. Safely store passwords, and encrypt your data. Safely store, generate and prefill your passwords, and encrypt your files and removable media (USB keys). Includes protection for smartphones and tablets. Protect all of your devices - mix and match security protection for up to 3 or 5 devices.

      ESET Internet Security 14.0.21.0 changelog:

      Added: WMI Scanner Added: System Registry Scanner Improved: Product change feature (without OS restart) Improved: Highest product on license offered Improved: BPP "Secure all browsers" - enables user to run any browser in hardened mode by default Improved: Under the hood optimizations ESET Smart Security Premium 14.0.21.0:

      Added: WMI Scanner Added: System Registry Scanner Improved: Completely new Password Manager Improved: Product change feature (without OS restart) Improved: Highest product on license offered Improved: BPP "Secure all browsers" - enables user to run any browser in hardened mode by default Improved: Under the hood optimizations ESET NOD32 Antivirus 14.0.21.0:

      Added: WMI Scanner Added: System Registry Scanner Improved: Product change feature (without OS restart) Improved: Highest product on license offered Improved: BPP "Secure all browsers" - enables user to run any browser in hardened mode by default Improved: Under the hood optimizations Download: ESET NOD32 Antivirus 14.0.21.0 (32-bit) | NOD32 Antivirus 64-bit | ~180.0 MB (Free Trial)
      Download: ESET Internet Security 14.0.21.0 (32-bit) | ESET Internet Security 64-bit
      Download: Eset Smart Security Premium 14.0.21.0 (32-bit) | Eset Smart Security Premium 64-bit
      Link: ESET Home Page

      Get alerted to all of our Software updates on Twitter at @NeowinSoftware