1. Home
  2. Anti-virus industry"s best kept secret

Anti-virus industry"s best kept secret

[email protected] (New York Times)
January 7, 2013

antivirus

Consumers and businesses spend billions of dollars every year on anti-virus software. But these programs rarely, if ever, block freshly minted computer viruses, experts say, because the virus creators move too quickly. “The bad guys are always trying to be a step ahead,” said Matthew D Howard, a venture capitalist at Norwest Venture Partners. “And it doesn"t take a lot to be a step ahead.”

Computer viruses used to be the domain of digital mischief makers. But in the mid-2000s, when criminals discovered that malicious software could be profitable, the number of new viruses began to grow exponentially.

The anti-virus industry has grown as well, but experts say it is falling behind. By the time its products are able to block new viruses, it is often too late. The bad guys have already had their fun, siphoning out a company"s trade secrets, erasing data or emptying a consumer"s bank account.

A new study by Imperva, a data security firm in Redwood City, California, and students from the Technion-Israel Institute of Technology is the latest confirmation of this. Amichai Shulman, Imperva"s chief technology officer, and a group of researchers collected and analysed 82 new computer viruses and put them up against more than 40 anti-virus products, made by top companies like Microsoft, Symantec, McAfee and Kaspersky Lab. They found that the initial detection rate was less than 5 percent.

On average, it took almost a month for anti-virus products to update their detection mechanisms and spot the new viruses. And two of the products with the best detection rates — Avast and Emsisoft — are available free; users are encouraged to pay for additional features. This despite the fact that consumers and businesses spent a combined $7.4 billion on anti-virus software last year — nearly half of the $17.7 billion spent on security software in 2011, according to Gartner.

“Existing methodologies we"ve been protecting ourselves with have lost their efficacy,” said Ted Schlein, a security-focused investment partner at Kleiner Perkins Caufield & Byers.

Part of the problem is that anti-virus products are inherently reactive. Just as medical researchers have to study a virus before they can create a vaccine, anti-virus makers must capture a computer virus, take it apart and identify its “signature” — unique signs in its code — before they can write a program that removes it.

That process can take as little as a few hours or as long as several years. In May, researchers at Kaspersky Lab discovered Flame, a complex piece of malware that had been stealing data from computers for an estimated five years.

Mikko H Hypponen, chief researcher at F-Secure, called Flame “a spectacular failure” for the anti-virus industry. “We really should have been able to do better,” he wrote in an essay for Wired.com after Flame"s discovery.

Symantec and McAfee, which built their businesses on anti-virus products, have begun to acknowledge their limitations and to try new approaches. The word “anti-virus” does not appear once on their home pages. Symantec rebranded its popular anti-virus packages: its consumer product is now called Norton Internet Security, and its corporate offering is now Symantec Endpoint Protection.

“Nobody is saying anti-virus is enough,” said Kevin Haley, Symantec"s director of security response. Haley said Symantec"s anti-virus products included a handful of new technologies, like behaviour-based blocking, which looks at some 30 characteristics of a file, including when it was created and where else it has been installed, before allowing it to run. “In over two-thirds of cases, malware is detected by one of these other technologies,” he said.

Imperva, which sponsored the anti-virus study, has a horse in this race. Its Web application and data security software are part of a wave of products that look at security in a new way. Instead of simply blocking what is bad, as anti-virus programs and perimeter firewalls are designed to do, Imperva monitors access to servers, databases and files for suspicious activity.

“The game has changed from the attacker"s standpoint,” said Phil Hochmuth, a Web security analyst at the research firm International Data Corporation. “The traditional signature-based method of detecting malware is not keeping up.”

Investors are backing a new crop of start-ups that turn the whole notion of security on its head. If it is no longer possible to block everything that is bad, the thinking goes, then the security companies of the future will be the ones whose software can spot unusual behaviour and clean up systems once they have been breached.

The hottest security start-ups today are companies like Bit9, Bromium, FireEye and Seculert that monitor Internet traffic, and companies like Mandiant and CrowdStrike that have expertise in cleaning up after an attack. Bit9 uses an approach known as whitelisting, allowing only traffic that the system knows is innocuous.

McAfee acquired Solidcore, a whitelisting start-up, in 2009, and Symantec"s products now include its Insight technology, which is similar in that it does not let any unknown files run on a machine.

McAfee"s former chief executive, David G DeWalt, was rumoured to be a contender for the top job at Intel, which acquired McAfee in 2010. Instead, he joined FireEye, a start-up with a system that isolates a company"s applications in virtual containers, then looks for suspicious activity in a sort of digital petri dish before deciding whether to let traffic through. Two McAfee executives, George Kurtz and Dmitri Alperovitch, left to start CrowdStrike, a start-up that offers a similar forensics service.

Seculert, an Israeli start-up, approaches the problem somewhat differently. It looks at where threats are coming from — the command and control centers used to coordinate attacks — to give governments and businesses an early warning system.

As the number of prominent online attacks rises, analysts and venture capitalists are betting that corporate spending patterns will change. “Technologies that once were only used by very sensitive industries like finance are moving into the mainstream,” Hochmuth said. “Very soon, if you are not running these technologies and you"re a security professional, your colleagues and counterparts will start to look at you funny.”

Companies have started working from the assumption that they will be hacked, Hochmuth said, and that when they are, they will need top-notch cleanup crews. If and when anti-virus makers are able to fortify desktop computers, chances are the criminals will have already moved on to smartphones.

In October, the FBI warned that a number of malicious apps were compromising Android devices. And in July, Kaspersky Lab discovered the first malicious app in Apple"s app store.

McAfee, Symantec and others are working on solutions, and Lookout, a start-up whose products scan apps for malware and viruses, recently raised funding that valued it at $1 billion.

“The bad guys are getting worse,” Howard of Norwest said. “Anti-virus helps filter down the problem, but the next big security company will be the one that offers a comprehensive solution.”

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
Agencies
June 8,2020

Washington DC, Jun 8: Astronomers acting on a hunch have likely resolved a mystery about young, still-forming stars and regions rich in organic molecules closely surrounding some of them.

They used the National Science Foundation's Karl G Jansky Very Large Array (VLA) to reveal one such region that previously had eluded detection and that revelation answered a longstanding question.

The regions around the young protostars contain complex organic molecules which can further combine into prebiotic molecules that are the first steps on the road to life.

The regions, dubbed "hot corinos" by astronomers, are typically about the size of our solar system and are much warmer than their surroundings, though still quite cold by terrestrial standards.

The first hot corino was discovered in 2003 and only about a dozen have been found so far. Most of these are in binary systems, with two protostars forming simultaneously.

Astronomers have been puzzled by the fact that, in some of these binary systems, they found evidence for a hot corino around one of the protostars but not the other.

"Since the two stars are forming from the same molecular cloud and at the same time, it seemed strange that one would be surrounded by a dense region of complex organic molecules and the other wouldn't," said Cecilia Ceccarelli, of the Institute for Planetary Sciences and Astrophysics at the University of Grenoble (IPAG) in France.

The complex organic molecules were found by detecting specific radio frequencies, called spectral lines, emitted by the molecules. Those characteristic radio frequencies serve as "fingerprints" to identify the chemicals.

The astronomers noted that all the chemicals found in hot corinos had been found by detecting these "fingerprints" at radio frequencies corresponding to wavelengths of only a few millimetres.

"We know that dust blocks those wavelengths, so we decided to look for evidence of these chemicals at longer wavelengths that can easily pass through dust," said Claire Chandler of the National Radio Astronomy Observatory, and principal investigator on the project.

"It struck us that dust might be what was preventing us from detecting the molecules in one of the twin protostars," added Chandler.

The astronomers used the VLA to observe a pair of protostars called IRAS 4A, in a star-forming region about 1,000 light-years from Earth. They observed the pair at wavelengths of centimetres.

At those wavelengths, they sought radio emissions from methanol, CH3OH (wood alcohol, not for drinking). This was a pair in which one protostar clearly had a hot corino and the other did not, as seen using the much shorter wavelengths.

The result confirmed their hunch. "With the VLA, both protostars showed strong evidence of methanol surrounding them. This means that both protostars have hot corinos. The reason we did not see the one at shorter wavelengths was because of dust," said Marta de Simone, a graduate student at IPAG who led the data analysis for this object.

The astronomers cautioned that while both hot corinos now are known to contain methanol, there still may be some chemical differences between them. That, they said, can be settled by looking for other molecules at wavelengths not obscured by dust.

"This result tells us that using centimetre radio wavelengths is necessary to properly study hot corinos," Claudio Codella of Arcetri Astrophysical Observatory in Florence, Italy, said.

"In the future, planned new telescopes such as the next-generation VLA and SKA, will be very important to understanding these objects," added Codella.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
Agencies
January 19,2020

New Delhi, Jan 19: Messaging service WhatsApp which on Sunday faced issues in transmitting multimedia content including pictures and images, prompting social media users to share hilarious memes and messages, resumed regular services after over two hours.

#WhatsAppDown was the trending hashtag on Twitter for most part of Sunday afternoon in India along with several other countries such as Brazil, Europe and also parts of Middle-East including UAE, reported downdetector.in, a realtime problem and outage monitoring website.

Users of the popular messaging app were unable to send media files, stickers and GIFs.

Most users immediately went to Twitter to find out about the problem and check if others were facing the same issue.

Numerous tweets and memes took over the internet as soon as the news broke about the WhatsApp tech issue. After around two hours of technical glitch, the app resumed full service.

Even after full recovery of media transfer, people globally still continued checking the status of the messaging app.

WhatsApp has been one of the prime messaging apps since May 2009 and has recently collaborated with Facebook.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
Agencies
February 25,2020

Tokyo, Feb 25: Japan's Chitetsu Watanabe, recognized at 112 years as the oldest man in the world, has passed away 11 days after he received the Guinness World Record certificate, his family said on Tuesday.

Watanabe died on Sunday night, Efe news reported.

He received the official certificate on February 12 at a nursing home in Joetsu in Niigata prefecture, where he resided.

Soon after being certified as the oldest man, he began to experience a lack of appetite and respiratory problems, the wife of his eldest son told public broadcaster NHK.

Born on March 5, 1907 in a family of farmers, Watanabe moved at the age of 20 to Taiwan, where he worked at a sugar refinery for 18 years before returning to Japan after the end of World War II.

A fan of calligraphy, custard and ice cream, Watanabe told the Guinness team that the key to his long life was laughter.

He was recognized as the oldest male in the world following the deaths in 2019 of German Gustav Gerneth (in October), aged 114 years, and Japan's Masazo Nonaka (in January), at the age of 113, three months older than the German.

It remains to be seen who will be recognized after the death of Watanabe, the only male on the list drawn up by the Gerontology Research Group of the 30 oldest people in the world.

Japan has among the highest life expectancy in the world and the number of centenarians in the country has crossed 71,000, according to the latest government figures.

Since 2000, the number of centenarians censored has quintupled, raising concern for the economic outlook and future workforce of the country - where the birthrate is on a downward trend.

Out of these, 88 per cent are women.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.