Where Only Fools Dare to Tread: An Empirical Study on the Prevalence of Zero-Day Malware

Where Only Fools Dare to Tread: An Empirical Study on the Prevalence of Zero-Day Malware

Zero-day malware is malware that is based on zero-day exploits and/or malware that is otherwise so new that it is not detected by any anti-virus or anti-malware scanners. This paper presents an empirical study that exposed updated Micsosoft Windows XP PCs with updated anti-virus software to a number...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Vegge, H., Halvorsen, F.M., Nergard, R.W., Jaatun, M.G., Jensen, J.
Format: Tagungsbericht
Sprache:eng
Schlagworte:
experiment
Internet
malware
Monitoring
Operating systems
Performance evaluation
Personal communication networks
Protection
Software systems
Software testing
Storage area networks
Telematics
zero-day
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 71
container_issue
container_start_page 66
container_title
container_volume
creator Vegge, H.
Halvorsen, F.M.
Nergard, R.W.
Jaatun, M.G.
Jensen, J.
description Zero-day malware is malware that is based on zero-day exploits and/or malware that is otherwise so new that it is not detected by any anti-virus or anti-malware scanners. This paper presents an empirical study that exposed updated Micsosoft Windows XP PCs with updated anti-virus software to a number of unsavoury Internet software repositories. A total of 124 zero-day malware instances were detected in our experiment. Our conclusion is that if a user is sufficiently adventurous (or foolish), no anti-virus protection can prevent a zero-day malware infection.
doi_str_mv 10.1109/ICIMP.2009.19
format Conference Proceeding
fullrecord <record><control><sourceid>ieee_6IE</sourceid><recordid>TN_cdi_ieee_primary_5076351</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>5076351</ieee_id><sourcerecordid>5076351</sourcerecordid><originalsourceid>FETCH-LOGICAL-i90t-893a8b9c3f8ebabfc278f9fb4419b6bc63c19ffc82337f98b8e030309feda6163</originalsourceid><addsrcrecordid>eNotkE1Lw0AURUdEUGuXrtzMH0idyZtM5rkr_dBASwsWFDdlZvqGRtKkTKKSf29A711czuYsLmP3UkykFPhYzIr1dpIKgROJF-xW5Boz0DKFSzbG3EiVKgUGUF-zcdt-iiEqA5VnN-z97UiR-Kauer5smqrlcztw1_BdJHt44tOaL07nMpbeVvy1-zr0vKl5dyS-jfRtK6o98SbwD4pNMrc9X9vqZ1Dcsatgq5bG_ztiu-ViN3tJVpvnYjZdJSWKLjEI1jj0EAw564JPcxMwOKUkOu28Bi8xBG9SgDygcYYEDMVAB6ulhhF7-NOWRLQ_x_JkY7_Phgsgk_ALITpRFg</addsrcrecordid><sourcetype>Publisher</sourcetype><iscdi>true</iscdi><recordtype>conference_proceeding</recordtype></control><display><type>conference_proceeding</type><title>Where Only Fools Dare to Tread: An Empirical Study on the Prevalence of Zero-Day Malware</title><source>IEEE Electronic Library (IEL) Conference Proceedings</source><creator>Vegge, H. ; Halvorsen, F.M. ; Nergard, R.W. ; Jaatun, M.G. ; Jensen, J.</creator><creatorcontrib>Vegge, H. ; Halvorsen, F.M. ; Nergard, R.W. ; Jaatun, M.G. ; Jensen, J.</creatorcontrib><description>Zero-day malware is malware that is based on zero-day exploits and/or malware that is otherwise so new that it is not detected by any anti-virus or anti-malware scanners. This paper presents an empirical study that exposed updated Micsosoft Windows XP PCs with updated anti-virus software to a number of unsavoury Internet software repositories. A total of 124 zero-day malware instances were detected in our experiment. Our conclusion is that if a user is sufficiently adventurous (or foolish), no anti-virus protection can prevent a zero-day malware infection.</description><identifier>ISBN: 9781424438396</identifier><identifier>ISBN: 142443839X</identifier><identifier>EISBN: 0769536123</identifier><identifier>EISBN: 9780769536125</identifier><identifier>DOI: 10.1109/ICIMP.2009.19</identifier><language>eng</language><publisher>IEEE</publisher><subject>experiment ; Internet ; malware ; Monitoring ; Operating systems ; Performance evaluation ; Personal communication networks ; Protection ; Software systems ; Software testing ; Storage area networks ; Telematics ; zero-day</subject><ispartof>2009 Fourth International Conference on Internet Monitoring and Protection, 2009, p.66-71</ispartof><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/5076351$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>309,310,776,780,785,786,2052,27902,54895</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/5076351$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Vegge, H.</creatorcontrib><creatorcontrib>Halvorsen, F.M.</creatorcontrib><creatorcontrib>Nergard, R.W.</creatorcontrib><creatorcontrib>Jaatun, M.G.</creatorcontrib><creatorcontrib>Jensen, J.</creatorcontrib><title>Where Only Fools Dare to Tread: An Empirical Study on the Prevalence of Zero-Day Malware</title><title>2009 Fourth International Conference on Internet Monitoring and Protection</title><addtitle>ICIMP</addtitle><description>Zero-day malware is malware that is based on zero-day exploits and/or malware that is otherwise so new that it is not detected by any anti-virus or anti-malware scanners. This paper presents an empirical study that exposed updated Micsosoft Windows XP PCs with updated anti-virus software to a number of unsavoury Internet software repositories. A total of 124 zero-day malware instances were detected in our experiment. Our conclusion is that if a user is sufficiently adventurous (or foolish), no anti-virus protection can prevent a zero-day malware infection.</description><subject>experiment</subject><subject>Internet</subject><subject>malware</subject><subject>Monitoring</subject><subject>Operating systems</subject><subject>Performance evaluation</subject><subject>Personal communication networks</subject><subject>Protection</subject><subject>Software systems</subject><subject>Software testing</subject><subject>Storage area networks</subject><subject>Telematics</subject><subject>zero-day</subject><isbn>9781424438396</isbn><isbn>142443839X</isbn><isbn>0769536123</isbn><isbn>9780769536125</isbn><fulltext>true</fulltext><rsrctype>conference_proceeding</rsrctype><creationdate>2009</creationdate><recordtype>conference_proceeding</recordtype><sourceid>6IE</sourceid><sourceid>RIE</sourceid><recordid>eNotkE1Lw0AURUdEUGuXrtzMH0idyZtM5rkr_dBASwsWFDdlZvqGRtKkTKKSf29A711czuYsLmP3UkykFPhYzIr1dpIKgROJF-xW5Boz0DKFSzbG3EiVKgUGUF-zcdt-iiEqA5VnN-z97UiR-Kauer5smqrlcztw1_BdJHt44tOaL07nMpbeVvy1-zr0vKl5dyS-jfRtK6o98SbwD4pNMrc9X9vqZ1Dcsatgq5bG_ztiu-ViN3tJVpvnYjZdJSWKLjEI1jj0EAw564JPcxMwOKUkOu28Bi8xBG9SgDygcYYEDMVAB6ulhhF7-NOWRLQ_x_JkY7_Phgsgk_ALITpRFg</recordid><startdate>200905</startdate><enddate>200905</enddate><creator>Vegge, H.</creator><creator>Halvorsen, F.M.</creator><creator>Nergard, R.W.</creator><creator>Jaatun, M.G.</creator><creator>Jensen, J.</creator><general>IEEE</general><scope>6IE</scope><scope>6IL</scope><scope>CBEJK</scope><scope>RIE</scope><scope>RIL</scope></search><sort><creationdate>200905</creationdate><title>Where Only Fools Dare to Tread: An Empirical Study on the Prevalence of Zero-Day Malware</title><author>Vegge, H. ; Halvorsen, F.M. ; Nergard, R.W. ; Jaatun, M.G. ; Jensen, J.</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-i90t-893a8b9c3f8ebabfc278f9fb4419b6bc63c19ffc82337f98b8e030309feda6163</frbrgroupid><rsrctype>conference_proceedings</rsrctype><prefilter>conference_proceedings</prefilter><language>eng</language><creationdate>2009</creationdate><topic>experiment</topic><topic>Internet</topic><topic>malware</topic><topic>Monitoring</topic><topic>Operating systems</topic><topic>Performance evaluation</topic><topic>Personal communication networks</topic><topic>Protection</topic><topic>Software systems</topic><topic>Software testing</topic><topic>Storage area networks</topic><topic>Telematics</topic><topic>zero-day</topic><toplevel>online_resources</toplevel><creatorcontrib>Vegge, H.</creatorcontrib><creatorcontrib>Halvorsen, F.M.</creatorcontrib><creatorcontrib>Nergard, R.W.</creatorcontrib><creatorcontrib>Jaatun, M.G.</creatorcontrib><creatorcontrib>Jensen, J.</creatorcontrib><collection>IEEE Electronic Library (IEL) Conference Proceedings</collection><collection>IEEE Proceedings Order Plan All Online (POP All Online) 1998-present by volume</collection><collection>IEEE Xplore All Conference Proceedings</collection><collection>IEEE Electronic Library (IEL)</collection><collection>IEEE Proceedings Order Plans (POP All) 1998-Present</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Vegge, H.</au><au>Halvorsen, F.M.</au><au>Nergard, R.W.</au><au>Jaatun, M.G.</au><au>Jensen, J.</au><format>book</format><genre>proceeding</genre><ristype>CONF</ristype><atitle>Where Only Fools Dare to Tread: An Empirical Study on the Prevalence of Zero-Day Malware</atitle><btitle>2009 Fourth International Conference on Internet Monitoring and Protection</btitle><stitle>ICIMP</stitle><date>2009-05</date><risdate>2009</risdate><spage>66</spage><epage>71</epage><pages>66-71</pages><isbn>9781424438396</isbn><isbn>142443839X</isbn><eisbn>0769536123</eisbn><eisbn>9780769536125</eisbn><abstract>Zero-day malware is malware that is based on zero-day exploits and/or malware that is otherwise so new that it is not detected by any anti-virus or anti-malware scanners. This paper presents an empirical study that exposed updated Micsosoft Windows XP PCs with updated anti-virus software to a number of unsavoury Internet software repositories. A total of 124 zero-day malware instances were detected in our experiment. Our conclusion is that if a user is sufficiently adventurous (or foolish), no anti-virus protection can prevent a zero-day malware infection.</abstract><pub>IEEE</pub><doi>10.1109/ICIMP.2009.19</doi><tpages>6</tpages></addata></record>
fulltext fulltext_linktorsrc
identifier ISBN: 9781424438396
ispartof 2009 Fourth International Conference on Internet Monitoring and Protection, 2009, p.66-71
issn
language eng
recordid cdi_ieee_primary_5076351
source IEEE Electronic Library (IEL) Conference Proceedings
subjects experiment
Internet
malware
Monitoring
Operating systems
Performance evaluation
Personal communication networks
Protection
Software systems
Software testing
Storage area networks
Telematics
zero-day
title Where Only Fools Dare to Tread: An Empirical Study on the Prevalence of Zero-Day Malware
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-08T04%3A36%3A15IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-ieee_6IE&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=proceeding&rft.atitle=Where%20Only%20Fools%20Dare%20to%20Tread:%20An%20Empirical%20Study%20on%20the%20Prevalence%20of%20Zero-Day%20Malware&rft.btitle=2009%20Fourth%20International%20Conference%20on%20Internet%20Monitoring%20and%20Protection&rft.au=Vegge,%20H.&rft.date=2009-05&rft.spage=66&rft.epage=71&rft.pages=66-71&rft.isbn=9781424438396&rft.isbn_list=142443839X&rft_id=info:doi/10.1109/ICIMP.2009.19&rft_dat=%3Cieee_6IE%3E5076351%3C/ieee_6IE%3E%3Curl%3E%3C/url%3E&rft.eisbn=0769536123&rft.eisbn_list=9780769536125&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rft_ieee_id=5076351&rfr_iscdi=true