Thursday, February 8, 2007

Microsoft's own antivirus fails to secure Vista

This is an interesting article i bumped infront of my PC while reading my daily tech updates. In short, you and i, in no condition whatsoever, should compromise security, even if the security comes from a giant software company.

Microsoft is a baby in the security field, they may have some products (Like MS ISA) that are already a little more matured but i would definately suggest doing some research and choose what's best for you.

I do think however, in the near future, Microsoft's AV will pose a real challenge to the rest as it bucks up and learn from "mistakes" and shortcomings. Till then, make the best choice, not anything less.

I personally use Kaspersky and Trend Micro and i've been very happy with them. I also have a Windows 2000 machine that has no antivirus and has only 3 infections (from Adwares) from the past 6 months :). All i had installed was constant patches and use a little caution when doing my thang.


SRC: http://news.com.com/Microsofts+own+antivirus+fails+to+secure+Vista/2100-7355_3-6156733.html?tag=newsmap
Microsoft's own antivirus software, Live OneCare, is unable to fully protect Vista users against viruses, and one of security firm McAfee's antivirus software packages also fails to protect users, according to independent research released Friday.

Security news site Virus Bulletin, backed by a team of security researchers based in Oxfordshire, U.K., tested 15 antivirus software packages used by businesses and designed specifically for Vista, Microsoft's newest operating system. The packages were released to businesses two months ago.

The researchers tested whether each of the antivirus products would stop a set of viruses known to be currently circulating. In order to be awarded a pass, the software had to detect all the viruses with no false positives.

But out of the 15, four failed: Microsoft Live OneCare 1.5; McAfee VirusScan Enterprise version 8.1i; G DATA AntiVirusKit 2007 v17.0.6353; and Norman VirusControl v5.90. The other 11, including software from CA, Fortinet, F-Secure, Kaspersky, Sophos and Symantec, detected all the viruses.

"With the number of delays that we've seen in Vista's release, there's no excuse for security vendors not to have got their products right by now," said John Hawes, technical consultant at Virus Bulletin. "In these days of hourly updates, it's always a surprise and a disappointment to see major products missing them (viruses). Vista cannot fend off today's malware without help from security products. It certainly looks like people upgrading to the new platform are going to need additional security solutions."

Joe Telafici, vice president of operations for McAfee's Avert Labs, told ZDNet UK that, in his opinion, Virus Bulletin had not used its latest antivirus updates, causing the failure. He said McAfee would issue further results with the updated software.

Microsoft pledged to improve Live OneCare. "We are looking closely at the methodology and results of the test to ensure that Windows Live OneCare performs better in future tests and, most importantly, as part of our ongoing work to continually enhance Windows Live OneCare," a company representative told ZDNet UK.

On the subject of Vista, the Microsoft representative added: "It's important to remember that no software is 100 percent secure. Microsoft is working to keep the number of security vulnerabilities that ship in our products to a minimum, through our Security Development Lifecycle process, and that work is paying off. The release of Windows Vista is the first Microsoft operating system to use the Security Development Lifecycle from start to finish and was tested more, prior to shipping, than any previous version of Windows."
Richard Thurston of ZDNet UK reported from London.

No comments: