Languagesx
English Deutsch
Subscribe
Home NSS Issues Another “Caution” Rating for AVG, Panda and Others

NSS Issues Another “Caution” Rating for AVG, Panda and Others

NSS Labs has released its latest report: Endpoint Protection Product Group Test Report: Host Intrusion Prevention. As in its recent socially engineered malware protection test, AVG and Panda received “caution” ratings from NSS for their respective enterprise endpoint protection products. Enterprise products from Norman and NSS president Rick Moy’s former employer ESET also received “caution” ratings. Norman’s anti-malware appliance, however, was recently certified by NSS.

The study examined security products’ ability to prevent client-side exploits – attacks that take advantage of vulnerabilities in software such as Adobe Reader or Web browsers. Operation Aurora, which hit Google and many other major companies late last year, is an example of such an exploit.

NSS found the worst performing products stopped only 29% of exploits, while the best performing products stopped 100% of exploits. NSS estimates 70-75% of all organizations are under-protected against client-side exploits.

The NSS Report emphasizes the fact that users need not navigate to a “shady” web site to fall victim to a client-side exploit – reputable web sites such as the New York Times have served malware (see our coverage of Dasient‘s report on web site vulnerabilities).

NSS also emphasized the importance of patching known vulnerabilities so one doesn’t need to rely on enterprise security suites.

AVG protested NSS’s testing earlier this year when NSS claimed AVG failed to detect the Aurora exploit. AVG posted a screenshot of its application detecting and blocking the exploit. Moy fired back with a blog post pointing out that the screenshot showed AVG detecting the exploit in Firefox, even though Aurora was an Internet Explorer exploit. He also included a video of AVG failing to stop the exploit. One eagle-eyed ReadWriteWeb commenter noticed that Firefox seemed to be running the IE Tab plugin in that screenshot, but that still doesn’t explain Moy’s video.

ESET told us earlier this year that they had been unable to get useful feedback from NSS without paying steep consulting fees, and was therefore unable to asses the validity of NSS’s testing. This time around, NSS has provided examples of malware tested in the report and has posted several videos demonstrating its testing on its YouTube channel.

About ReadWrite’s Editorial Process

The ReadWrite Editorial policy involves closely monitoring the tech industry for major developments, new product launches, AI breakthroughs, video game releases and other newsworthy events. Editors assign relevant stories to staff writers or freelance contributors with expertise in each particular topic area. Before publication, articles go through a rigorous round of editing for accuracy, clarity, and to ensure adherence to ReadWrite's style guidelines.

tags
klint finley
Contributor

.

Related News

Logitech offers mouse and keyboard users free ChatGPT upgrade with AI Prompt Builder. A robotic hand with silver metallic fingers holds a black computer mouse on a red background. Text at the top of the image reads from left to right: "Recipes Instructions 0". Below that is a text box with the following options, top to bottom: "Rephrase", "Summarize", "Reply", "Create Email", "Brainstorm".
Logitech offers mouse and keyboard users free ChatGPT upgrade
Suswati Basu
Streets of Sakarya city during the Ottoman Empire
Medium bans AI-generated content from its paid Partner Program
Sophie Atkinson
How to tell if something is written by ChatGPT
How to tell if something is written by ChatGPT
James Jones
Elon Musk black and white side profile, on a dark blue background which features a large Tesla logo. wads of money rain down on the logo
Elon Musk to raise Tesla AI staff salaries to curb OpenAI poaching
Ali Rees
a conceptual image with a magnifying glass and large 'AI' letters to symbolize AI detectors.
5 best AI content detectors
James Jones

Most Popular Tech Stories

Latest News

The heroes of Stellar Blade are seen in profile aboard a space vessel which is cast in an eerie green haze. The hero, Eve, is standing.
Gaming

Stellar Blade reviews roundup: Critics love the gameplay and action, but not the story
Owen Good12 hours

Stellar Blade, the debut work from South Korea-based Shift Up, launches on April 26. The highly anticipated release is preceded by a wave of mostly positive reviews that began publishing...

Popular TopicsArrow right.svg

AI
AI
AR / VR
AR / VR
Cryptocurrency
Cryptocurrency
Gaming
Gaming
Smartphone
Smartphone
Gambling
Gambling
Wearables
Wearables
Web
Web

Get the biggest tech headlines of the day delivered to your inbox

    By signing up, you agree to our Terms and Privacy Policy. Unsubscribe anytime.

    Tech News

    Explore the latest in tech with our Tech News. We cut through the noise for concise, relevant updates, keeping you informed about the rapidly evolving tech landscape with curated content that separates signal from noise.

    In-Depth Tech Stories

    Explore tech impact in In-Depth Stories. Narrative data journalism offers comprehensive analyses, revealing stories behind data. Understand industry trends for a deeper perspective on tech's intricate relationships with society.

    Expert Reviews

    Empower decisions with Expert Reviews, merging industry expertise and insightful analysis. Delve into tech intricacies, get the best deals, and stay ahead with our trustworthy guide to navigating the ever-changing tech market.