Detecting Trojans and Worms with Network Analyzer

Thursday, September 09, 2010

Ray Tan

85ac6feb584b665e85664974c546cfec

As network security professionals, we definitely understand the importance of antivirus software, as it is always the first choice for most enterprises and home users.

But it disappoints me that although antivirus has adapted to cloud computing, it still works on signature detection method.

Now we come to the end of antivirus software age, as there are several reasons that we can not rely on it any more.

  • The number of new signatures released yearly exceeds a million, this makes the antivirus less reliable. We have detected virus with valid signature, and we found out that some company released their product within suspicious code.
  • We are facing threats more than virus, such as malware, trojan, worms and distributed denial-of-service attack, antivirus can do nothing or very limited on them.
  • There are more and more attacks targeted at antivirus software itself, this may lead to data breach and other potential loss without the awareness of user.
What are your thoughts on the future of antivirus software? Leave a comment...
Possibly Related Articles:
10577
Viruses & Malware
Software
Antivirus malware
Post Rating I Like this!
5c857bc159e9c361aebbb1eab4c87c3f
Mister Reiner I have some posts on my blog that you might find interesting:

Finding unexpected Trojans on your network? Perhaps you need an ICA!
http://bit.ly/ap7atl

How to catch hackers security sensors don’t see – Part 1
http://wp.me/pTkQI-di

How to catch hackers security sensors don’t see – Part 2
http://wp.me/pTkQI-tx

Is it possible to engineer a computer that is 100% secure?
http://misterreiner.wordpress.com/2010/08/30/is-it-possible/
1284061545
85ac6feb584b665e85664974c546cfec
Ray Tan Thank you for your sharing.
1284105917
85ac6feb584b665e85664974c546cfec
Ray Tan I have posted the full article on my blog:
http://networkmonitor.blog.com/

Please leave your comment if you are interested in it.
Thank you.
1284106091
Default-avatar
Karen Kast This is taken from a section of our company newsletter:

While heuristic, reputation and relationship technologies
continue to improve (and are an important tool in the fight
against malware) signature based systems continue to be the
primary technology used in malware protection.
1284589237
85ac6feb584b665e85664974c546cfec
Ray Tan I have viewed your website, but I did not find the newsletter you have mentioned.
As I have stated, anti-virus still works for known virus if you update it everyday, however, it fail to detect the unknown ones, it can not detect the attacks from hacker.
1284606701
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.