Danish security firm Secunia, probably most known for it's program Personal Software Inspector, has tested 12 different security suites.
In the test ( pdf) they have looked how well these suites protect against possible exploits because of vulnerabilities in unpatched programs (think Word, Powerpoint etc).
While the test concludes that most security suites suck (AVG, Kaspersky and McAfee all flunked except for Norton which caught 64 out of 300 exploits), Secunia only tested the signature-based detection of these suites.
For instance, an Excel file with a zero-day exploit might not be detected by the signature-based virus engine but it can be detected and terminated by behavioral scanning.
Secunia didn't test this behaviour based detection so the value of their test is rather limited (imao).
Unpatched software is a very likely entry point for viri/malware so the Secunia product PSI is an excellent tool to check which programs are up-to-date and which not. I can highly recommend to use it once in a while.
Secunia's test of security suites is a whole different ball game though.
Because of the one-sided testing (only signature based) I wouldn't value those results too much.
Cheers.
Secunia tests 12 Security suites
Discussion in 'Security and Anti-Virus Software' started by Baserk, Oct 14, 2008.