Fools Download Where Angels Fear to Tread

Fools Download Where Angels Fear to Tread

Our study illustrates that the risk of getting infected by malware that antivirus protection doesn't detect is alarmingly high. New malware that the antivirus engines don't have signatures for is likely to escape detection by a desktop antivirus solution. Taking precautions while using the...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE security & privacy 2009-03, Vol.7 (2), p.83-86
Hauptverfasser: Jaatun, Martin Gilje, Jensen, Jostein, Vegge, Havard, Halvorsen, Finn Michael, Nergard, Rune Walso
Format: Magazinearticle
Sprache:eng
Schlagworte:
0-day
Acceptability
anti-virus
Computer networks
Computer programs
Crawlers
Downloading
Internet
IP networks
Malware
Packages
Privacy
Protocols
Search engines
Security
Signatures
Software
System testing
virus
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Our study illustrates that the risk of getting infected by malware that antivirus protection doesn't detect is alarmingly high. New malware that the antivirus engines don't have signatures for is likely to escape detection by a desktop antivirus solution. Taking precautions while using the Internet can protect users only to a certain extent. If they visit the wrong Web site or download a file infected with 0-day malware, they probably won't be protected from infection. The malware specimens that our antivirus packages didn't detect during our two-week exposure period suggest to us that signature-based antivirus software doesn't provide sufficient protection for users who live on the bleeding edge with respect to where they obtain their software. Coupled with the exponential growth of new malware variants, our findings suggest that antivirus vendors have major problems keeping the signature lag within acceptable limits.
ISSN:1540-7993
1558-4046
DOI:10.1109/MSP.2009.36