Tuesday, October 14, 2008

Top Security Suites Don't Block Exploits

This shouldn't come exactly as a surprise, but according to a study by Secunia, a Danish IT security outfit, most security suites don't block exploits.

The reason, the study says, is that most security suites are still stuck in the old mode of using signatures to detect malware. Signatures take time -- even if only a few hours -- to develop and deploy, and then rely on having a the malware handy for analysis.

The study recommends focusing on vulnerabilities rather than malware payloads, which are always follow hackers. Looking for vulnerability exploits could attack multiple pieces of malware at once and is more efficient.


Post a Comment

<< Home