OnlySoftwareBlog

General discussion, news & views about Software

Posts Tagged ‘Anti-Virus’

Fake anti-virus software on the increase

March 9th, 2012

Fake antivirus applications are on the increase according to a report from GFI Software. In its top ten collection of the 10 most prevalent threat detections encountered during the month, the insecurity experts found that there was a new wave of or rogue Avs.

Growing since the start of the year, last month brought a significant spike in new variations of rogue AV, the report said. Christopher Boyd, senior threat researcher at GFI Software said that while the velocity at which rogues were successfully propagating may have slowed toward the end of last year, they are certainly back now, and they remain a popular tactic among cybercriminals.

Many rogue AV programs are being distributed via spam containing malicious links to the Blackhole exploit, a tool used by cybercriminals to target unpatched vulnerabilities in software applications from industry leaders like Microsoft and Adobe. Users infected by rogue AV may be redirected to fraudulent websites, have their systems hijacked by software appearing to scan their PCs or plagued by messages warning of viruses and other PC security risk. These scareware tactics trick users into providing credit card data to purchase non-existent protection.

To make matters worse rogue AV utilities are continually tweaked in an attempt to avoid detection, with newer variants of these malicious applications propagating every 12 to 24 hours.

Source:http://www.fudzilla.com/home/item/26258-fake-anti-virus-software-on-the-increase

Comments Off »

Posted in Software News

Tags: Anti-Virus Software

Android anti-virus software is frequently unreliable

March 7th, 2012

Share

With only seven products achieving a detection rate of 95% or more and 24 exhibiting detection rates below 65%, tests performed by AV-Test have shown that anti-virus software for Android is a long way from attaining the reliability of desktop anti-virus software.

Paralleling the explosion in anti-virus apps is the explosion in malware for Android smartphones. The spectrum includes online banking trojans, premium rate diallers and spyware. AV-Test tested the detection rates of 41 anti-virus applications for Android smartphones using a total of 618 items of malware.

Programs from established anti-virus software companies Avast, Dr. Web, F-Secure, Ikarus and Kaspersky detected over 95% of the malware samples, as did products from mobile platform specialists Lookout and Zoner. A further ten products detected more than 65% of the sample. But BullGuard, Commodo, G Data and McAfee, all familiar names from the desktop market, were amongst the products which detected less than two thirds of the malware tested. The testers were unable to identify any detection functionality in a total of six products, including Android Antivirus and Android Defender.

The significance of these tests does, however, need to be put into perspective. The 618 malware variants tested were derived from only 20 malware families, including Rooter, Opfake and FakeInst – the headline figure implies a diversity which simply isn’t present. It would seem reasonable to assume that the nearly 12,000 samples of malware for Android in AV-Test’s zoo are also derived from a far smaller set of malware families.

The anti-virus software tested detects malware primarily through the use of signatures. Users should not expect more sophisticated detection algorithms such as heuristics and behavioural detection. This limits them to protecting against known malware – they cannot hope to protect users against previously unknown malware for which no signatures are available.

Google itself uses heuristic techniques able to detect unknown malware to scan its app store. But with some recent trojans downloading the actual malicious payload from the web after installation, prophylactic detection at the app store level is almost impossible. The resulting hazard is a direct result of the fact that, in contrast to iOS, Android does not require executable code to be digitally signed.

Source:http://www.h-online.com/security/news/item/Android-anti-virus-software-is-frequently-unreliable-1465233.html

Comments Off »

Posted in Software News

Tags: Android Anti-Virus Software

Anti-virus for mobile devices described as “deception”

February 13th, 2012

Share

Though the information was only released by Christ DiBona on Google Plus, the words were spoken by a person on the high position of a big information technology service firm in the world may have big impacts on the people using anti-virus software for mobile phones.

Vietnamese anti-virus firms have reactions

Chris DiBona believes that there is no virus risk on mobile devices like on computer, and that anti-virus firms have been trying to sell anti-virus software products to seek profit from the fear of users.

To date, some big security brands in the world, including Symantec and Kaspersky and Vietnamese firms have been providing anti-virus software products in Vietnam. Security experts said that several years ago, virus could not appear on mobile phones, but the situation has changed.

CMC Infosec said that the open source software director of Google keeps misunderstanding about anti-virus software for mobile devices.

Vu Ngoc Son, a senior executive of BKAV, said that in 2011, BKAV discovered nearly 4000 types of virus on the mobile phones using Android operating system. Meanwhile, less viruses, or no virus have been found on the phones using other operating systems.

Meanwhile, a survey of Juniper Networks has pointed out that in just three months of 2011, the number of malware pieces on Android increased by 500 percent.

According to Son, unlike computer hackers, who have to hijack computers or deeply penetrate into the systems to steal information, the viruses on mobile phones can dwindle users while no need to hijack the devices. The viruses on mobile devices can spread out like computer viruses, when users download files and install software in accordance with the links given.

BKAV has discovered the software on Symbian operating system spreading malware through messages. When users click on the link given, the software piece would be automatically installed.

Foreign security firms agree

Son has said that big security firms in the world have reacted to the statement of DiBona, saying that the man cannot tell the difference between normal software and the software dangerous to users. Therefore, he has mistaken computer viruses for mobile phone viruses.

The US Symantec security firm, though has not had direct reactions to the statement of the Google’s executive, has recently sent to media firms in Vietnam a press release about the malware on mobile devices. The move means that the US security firm reaffirms its viewpoint about the existence of viruses on mobile phones.

In the notice, Symantec said it shares the same view with security experts that in 2011 was the year when malware on mobile devices developed rapidly, becoming one of the big threats. About the situation in 2012, Symantec said that it seems that the viruses have settled down to prepare for a stronger development period.

Symantec has also announced that it has discovered a new deception app which assumes the names of some popular games on Android Market, called Android Steek. Besides, Symantec has also discovered a new malware on mobile phone which exploits users’ worry about the controversial software Carrier IQ (http://www.symantec.com/connect/blogs/day-after-year-mobile-malware). Under the name of a tool that helps eliminate Carrier IQ, the malicious software, called Android Qicsomos, targets the smart phone users in France.

Source:http://english.vietnamnet.vn/en/science-technology/18645/anti-virus-for-mobile-devices-described-as–deception-.html