Overclock.net › Forums › Industry News › Software News › [Stuff.co.nz] Anti-virus can't keep up with threat onslaught
New Posts  All Forums:Forum Nav:

[Stuff.co.nz] Anti-virus can't keep up with threat onslaught - Page 10

post #91 of 366
Quote:
Originally Posted by chinesekiwi View Post

Only that's an inaccurate analogy, particularly if you look at independent tests. A better analogy is the off chance of the condom breaking.

That would be assuming that the anti-virus protected you against everything, until it broke. It having a hole fits it a bit better, as anti-viruses themselves, have holes. They can't keep up with the rate that viruses are made. Sure it'll stop most of the most common stuff, but there's still plenty that could always make it's way through.

What Windows really needs is a permissions system more like the *nix's. Which they somewhat attempted with Vista and the UAC. But it was just overly intrusive and most people ended up disabling it because of so rendering it useless. They need to lockdown all the system files, since most you can easily just delete and corrupt the install. And only requiring Admin access when trying to access system files/directories.

It wouldn't solve everything but it'd be a bigger step in the right direction than that pathetic attempt that the UAC was.
Quote:
Originally Posted by GanjaSMK View Post

@Shrak
I'm only poking fun. tongue.gif

I know, but just saying. I was partially drunk when I signed up here and filled that out, and got impatient towards the end of all the clicking : D

Edit: also getting late and now I'm starting to notice a bunch of typo's. If a few Spanish words start slipping out don't pay them any mind lachen.gif
Edited by Shrak - 4/5/12 at 8:53pm
post #92 of 366
Quote:
Originally Posted by Psycho Homer View Post

You also have to realize the market that this software is geared towards. Consumers who have minimal knowledge of computers and expect everything to work right out of the box with no configuration. They don't want or know how to even configure this software. And more importantly they don;t want to be bugged by every detection that highly configured software can make. Then on top of the notifications then the user actually has to pick an action. They are going to have no idea what to pick. Hell, even Norton has simplified itself so much for installation it only has a single button that says install.

True thumb.gif
My System
(15 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K @4.7ghz(1.39v) 24/7 +D14 Asus P8Z77-V Sapphire R9 290 Tri X @1160/1600 8GB HyperX @2133 
Hard DriveOptical DriveCoolingOS
WD Blue EZEX 1TB & Samsung 840 Pro 256GB (OS) Asus Nocuta NH D14 WIN 7 64 Ultimate 
MonitorKeyboardPowerCase
NEC 2490wuxi (rev 1) Logitech Wave Cooler Master Vanguard 850W Cooler Master HAF 932 
MouseMouse PadAudio
Logitech G5 Cooler Master Xonar STX+ HD595 
  hide details  
Reply
My System
(15 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K @4.7ghz(1.39v) 24/7 +D14 Asus P8Z77-V Sapphire R9 290 Tri X @1160/1600 8GB HyperX @2133 
Hard DriveOptical DriveCoolingOS
WD Blue EZEX 1TB & Samsung 840 Pro 256GB (OS) Asus Nocuta NH D14 WIN 7 64 Ultimate 
MonitorKeyboardPowerCase
NEC 2490wuxi (rev 1) Logitech Wave Cooler Master Vanguard 850W Cooler Master HAF 932 
MouseMouse PadAudio
Logitech G5 Cooler Master Xonar STX+ HD595 
  hide details  
Reply
post #93 of 366
Thread Starter 
Quote:
Originally Posted by Shrak View Post

That would be assuming that the anti-virus protected you against everything, until it broke. It having a hole fits it a bit better, as anti-viruses themselves, have holes. They can't keep up with the rate that viruses are made. Sure it'll stop most of the most common stuff, but there's still plenty that could always make it's way through.
What Windows really needs is a permissions system more like the *nix's. Which they somewhat attempted with Vista and the UAC. But it was just overly intrusive and most people ended up disabling it because of so rendering it useless. They need to lockdown all the system files, since most you can easily just delete and corrupt the install. And only requiring Admin access when trying to access system files/directories.
It wouldn't solve everything but it'd be a bigger step in the right direction than that pathetic attempt that the UAC was.

UAC is fine when it's tweaked and UAC is fine in Windows 7. UAC is far from intrusive in Windows 7.

Also it's called heuristics. i.e. Protecting you from viruses unknown in the database based on patterns in the virus code. Basically like criminal profiling in real life when hunting a killer.
post #94 of 366
Quote:
Originally Posted by chinesekiwi View Post

Just remember of course to deselect all that 'added toolbar' bollocks during install and to only install the Comodo firewall and not the AV smile.gif
Yeah, I've got it tongue.gif

Now where's my dummy...?
post #95 of 366
Thread Starter 
Quote:
Originally Posted by Psycho Homer View Post

Right now no anti-virus is going to pick up most of the newly crypted Sinowal files. Whether you had an AV or not you were going to get stuck with Sinowal.

But you miss the point.
post #96 of 366
Quote:
Originally Posted by chinesekiwi View Post

WRONG. See my example above.
Can we get rid of the myth that malware and viruses are only spread by dodgy sites already?

The exploit only worked on a year old version of Java, and well...
Quote:
Even 9 hours after the smokeloader Trojan executables were in the wild, the executables were not recognized by the majority of anti-virus products

What good is realtime protection if it doesn't do anything? So we have a virus that only infected people with really old versions of Java who visited the site within a 3 hour time period and if they did their antivirus software wouldn't have caught it or been able to do anything about it.

USELESS
    
CPUMotherboardGraphicsRAM
Core i5 4670k ASUS Maximus VI Gene Gigabyte GTX 460 1GB Kingston Hyper-X 
Hard DriveHard DriveHard DriveHard Drive
Samsung 830 OCZ Vertex 3 WD6401AALS WD5000AAKS 
CoolingOSMonitorMonitor
Noctua NH-D14 elementary OS Dell Ultrasharp U2312HM LG W2442PA-BF 
KeyboardPowerCaseMouse
Microsoft Sidewinder X4 Corsair HX750W Corsair Graphite 600T Logitech G700 
Audio
ASUS Xonar DG 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Core i5 4670k ASUS Maximus VI Gene Gigabyte GTX 460 1GB Kingston Hyper-X 
Hard DriveHard DriveHard DriveHard Drive
Samsung 830 OCZ Vertex 3 WD6401AALS WD5000AAKS 
CoolingOSMonitorMonitor
Noctua NH-D14 elementary OS Dell Ultrasharp U2312HM LG W2442PA-BF 
KeyboardPowerCaseMouse
Microsoft Sidewinder X4 Corsair HX750W Corsair Graphite 600T Logitech G700 
Audio
ASUS Xonar DG 
  hide details  
Reply
post #97 of 366
Thread Starter 
Quote:
Originally Posted by marknotk View Post

Yeah, I've got it tongue.gif
Now where's my dummy...?

I dunno tongue.gif

And yeah, if you haven't already, use Google Chrome.
post #98 of 366
Quote:
Originally Posted by chinesekiwi View Post

But you miss the point.

You have been arguing that AV's software should be essential and everyone should have it. Then you had a new post quoting no other post as a reference showing a MBR Rootkit that no AV could detect. What point am I missing? If you are referring to you later post where you mentioned people are ignorant to think you can't get a serious infection from just web browsing, I do agree with that. I see it multiple times a day.
CASTLE GRAYSKULL
(17 items)
 
  
CPUMotherboardGraphicsRAM
AMD RYZEN 7 1700 3.93 GHz GIGABYTE AORUS GA-AX370-Gaming K7 EVGA GeForce GTX 980 4GB K|NGP|N G.SKILL TridentZ Series F4-3200C14D-16GTZSK  
Hard DriveHard DriveCoolingOS
WD Black 4 TB WD4001FAEX Intel SSD DC P3600 1.6TB EKWB EK-XLC Predator 360 Windows 10 Pro x64 
MonitorMonitorKeyboardPower
23” Dell™ UltraSharp U2312HM x2 27" Yamakasi Catleap Q270 OC Corsair Gaming K95 RGB SeaSonic Platinum-1000 
CaseMouseMouse PadAudio
EVGA DG-86 Dream Machines DM1 Pro Glorious XXL Extended ASUS Xonar Essence STX 
  hide details  
Reply
CASTLE GRAYSKULL
(17 items)
 
  
CPUMotherboardGraphicsRAM
AMD RYZEN 7 1700 3.93 GHz GIGABYTE AORUS GA-AX370-Gaming K7 EVGA GeForce GTX 980 4GB K|NGP|N G.SKILL TridentZ Series F4-3200C14D-16GTZSK  
Hard DriveHard DriveCoolingOS
WD Black 4 TB WD4001FAEX Intel SSD DC P3600 1.6TB EKWB EK-XLC Predator 360 Windows 10 Pro x64 
MonitorMonitorKeyboardPower
23” Dell™ UltraSharp U2312HM x2 27" Yamakasi Catleap Q270 OC Corsair Gaming K95 RGB SeaSonic Platinum-1000 
CaseMouseMouse PadAudio
EVGA DG-86 Dream Machines DM1 Pro Glorious XXL Extended ASUS Xonar Essence STX 
  hide details  
Reply
post #99 of 366
Thread Starter 
Quote:
Originally Posted by nathris View Post

The exploit only worked on a year old version of Java, and well...
What good is realtime protection if it doesn't do anything? So we have a virus that only infected people with really old versions of Java who visited the site within a 3 hour time period and if they did their antivirus software wouldn't have caught it or been able to do anything about it.
USELESS

It's like saying it's useless because it can't protect 1% of viruses...uh yes....dumb logic is dumb.

Go check out say AVG Free's report: http://www.av-test.org/no_cache/en/tests/test-reports/test-reports/?tx_avtestreports_pi1%5Breport_no%5D=114885

Yep, 98% real-time 0-day protection. Misses 2 %..must be useless rolleyes.gif
post #100 of 366
Quote:
Originally Posted by nathris View Post

And you'd be more likely to get an STD because you think "I'm using a condom, so I don't have to be as selective in my sexual partners".
Realtime antivirus projection is useless. You don't just "get" viruses these days. The only way to do that is by browsing suspicious sites using an outdated version of Internet Explorer. Viruses infect computers because the users execute infected files. Don't want to get infected? Don't open unverified exe files without scanning them first. Don't want to get STDs? Don't sleep around.

Ever heard of a botnet? They're not tricking people into downloading freeporn.exe. These are sophisticated programs that spread silently and often with the end user never knowing.

To all the people who "don't need an antivirus"... its not herpes, you're not going to feel an itch. You could still be giving access to your rig, personal information, or participating in a DDoS without your knowledge. Even trusted sites like OCN can be hit by a drive-by download once in a blue moon...
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [Stuff.co.nz] Anti-virus can't keep up with threat onslaught