Posted by: David Harley | December 3, 2016

AV-Test Report on Risk Scenarios

Long-established research/product testing organization AV-Test has published an interesting  document giving some background to the current malware scene, including consideration of threats on Windows, Mac, Android/mobile, Internet, PUA, and test statistics. Current Risk Scenario: AV-TEST Security Report Facts at a Glance

David Harley

Posted by: David Harley | November 7, 2016

AV-Comparatives ‘next-gen’ test

Independent testing of so-called ‘next-gen’ products is currently quite unusual: indeed, some next-gen vendors have suggested that their products cannot be tested by independent testers. Though apparently it’s OK to do your own tests with the methodologies and samples provided by a website affiliated with the reseller of  a next-gen product. The dangers of that approach are fairly obvious, but I’ll certainly be back to that topic in due course.

Independent tester AV-Comparatives, however, has gone its own way – as with its long experience of product testing, it’s certainly entitled to do – and tested four next-gen products:

  • Barracuda NextGen Firewall VF100 7.0.1
  • CrowdStrike Falcon Host
  • Palo Alto Traps
  • Sentinel One Endpoint Protection Platform

The overall reviews and the Malware Protection Tests were performed by AV-Comparatives themselves, while the Exploit Test was performed by MRG Effitas.

This review, and others, are available from the AV-Comparatives Business Reviews page.

David Harley

Posted by: David Harley | October 31, 2016

SANS, Signatures, Next-Gen and DIY Testing

An article by me for IT Security UK that examines how, while SANS has done some good work in security, its forthcoming webcast on next-gen product evaluation is based on fallacies.

SANS, Signatures, Next-Gen and DIY Testing

David Harley

Posted by: David Harley | October 18, 2016

Machine Learning: Hot or Hype?

For the Kaspersky blog,  explodes some myths about the Machine Learning buzzword. While I agree that the term is vastly over-hyped by some nextgen vendors, ‘n’ makes some fair points in a comment.

Five myths about machine learning in cybersecurity

Malanov’s point about the reluctance of nextgen vendors to submit to testing is well-taken, but in several cases that reluctance seems to have been mitigated by a desire to retain access to VirusTotal’s resources. I’ll probably come back to that.

David Harley

Posted by: David Harley | August 31, 2016

OPSWAT partners with AV-Test and AV-Comparatives

OPSWAT press release:

OPSWAT Partners with AV-TEST and AV-Comparatives for Enhanced Certification Program

More information about the *programme here.

*What, you expected me to use the US spelling? 😉

David Harley

« Newer Posts - Older Posts »