Zero-day infections are common
Antivirus software running on your computer has one big weak point – if a new virus is released before the antivirus provider knows about it or before the next scheduled antivirus software update, your system can be infected. Such zero-day infections are common.
However, a key recent development in antivirus software is to incorporate built-in defences against viruses and other computer malware for which they have no prior knowledge. These defences usually respond to unusual activity that resembles the way viruses behave once they have infected a system. This so-called heuristic approach combined with regularly updated antivirus software will usually protect you against known viruses and even zero-day viruses. However, in reality, there are inevitably some attacks that continue to slip through the safety net.
Writing in a forthcoming issue of the International Journal of Electronic Security and Digital Forensics, researchers at the Australian National University, in Acton, ACT, and the Northern Melbourne Institute of TAFE jointly with Victorian Institute of Technology, in Melbourne Victoria, have devised an approach to virus detection that acts as a third layer on top of scanning for known viruses and heuristic scanning.
The new approach employs a data mining algorithm to identify malicious code on a system and the anomaly of behaviour patterns detected is predominantly based on the rate at which various operating system functions are being “called”. Their initial tests show an almost 100% detection rate and a false positive rate of just 2.5% for spotting embedded malicious code that is in “stealth mode” prior to being activated for particular malicious purposes.
The Latest Bing News on:
- Over 60 Fake ‘Among Us’ Apps Discovered; Some Used As Malware Dropperson November 27, 2020 at 3:00 am
An app security company discovered that cybercriminals are now using fake "Among Us" apps to spread malware and adware.
- Digitally Signed Bandook Malware Once Again Targets Multiple Sectorson November 27, 2020 at 12:19 am
Check Point Research called out hackers affiliated with a group named Dark Caracal in a new report published yesterday for their efforts to deploy "dozens of digitally signed variants" of the Bandook ...
- Don't download that Among Us app - it could be malwareon November 25, 2020 at 10:38 pm
As InterSloth's latest game Among Us has quickly become a fan favorite on both PC and mobile, cybercriminals have taken note and they are now using fake versions of the game to distribute malware ...
- Anti-malware Protection Market Comprehensive Study | NortonLifeLock, Fortinet, Mcafeeon November 25, 2020 at 2:20 pm
Global Anti-malware Protection Market Size, Status and Forecast 2020-2026 , Covid 19 Outbreak Impact research report added by Report Ocean, is an in-depth analysis of market characteristics, size and ...
- Ransomware: This new variant could be the next big malware threat to your businesson November 25, 2020 at 7:09 am
Egregor is gaining traction after only emerging in September - and researchers warn this ransomware family is only just getting started.
- COVID-19 led to global mobile malware outbreak – reporton November 24, 2020 at 8:22 am
Mobile malware saw a significant increase in the third quarter, with people spending more time on their mobiles, and Asia at the center of the outbreak.
- Stantinko's Linux malware now poses as an Apache web serveron November 24, 2020 at 7:06 am
Stantinko, one of the oldest malware botnets still operating today, has rolled out updates to its class of Linux malware, upgrading its trojan to pose as the legitimate Apache web server process ...
- TrickBot malware uses obfuscated Windows batch script to evade detectionon November 24, 2020 at 5:00 am
This week researchers analyze BAT script obfuscation techniques used by Trickbot's 100 to evade antivirus detection.
- 'The Great Suspender' extension is now flagged as malware, but Microsoft Edge has a built-in replacementon November 23, 2020 at 10:28 am
The Great Suspender was sold to a new owner earlier this year. Since then, accusations appeared that the app contains malware. Now, Microsoft Edge flags the extension as malware and suspends it.
- TrickBot turns 100: Latest malware released with new featureson November 21, 2020 at 7:01 am
The TrickBot cybercrime gang has released the hundredth version of the TrickBot malware with additional features to evade detection.
The Latest Google Headlines on:
The Latest Bing News on:
- Unconstitutional searches and faulty warrants: how a child porn case against a Sudbury surgeon collapsedon November 26, 2020 at 1:26 pm
It's an understatement to say people in Greater Sudbury were shocked in May 2019 when Sudbury nephrologist Dr. Ian MacDonald was charged with using a computer at Health Sciences North to access child ...
- Sophos notifies customers of data exposure after database misconfigurationon November 26, 2020 at 1:42 am
Sophos was advised of an access permission issue in a tool used to store information on customers who have contacted Sophos Support," the company said in an ...
- Kaspersky sees emergence of new cyberattack strategies in 2021on November 25, 2020 at 8:05 am
INTERNET SECURITY firm Kaspersky on Monday said it expects new cyberattack strategies to emerge next year, which will mainly target network appliances and 5G. “New attack vectors, such as the ...
- Email Security: Don’t Overlook Your #1 Threat Vectoron November 23, 2020 at 1:18 pm
Combating zero-day threats & malware requires more than a robust endpoint security solution. Here's how to address email security.
- 'How sweet it is': Sutton savours end of second wave as Queensland eyes opening border to Victorianson November 23, 2020 at 8:52 am
Victoria's second COVID-19 wave has officially ended after a man in his 90s was discharged from hospital on Monday, leaving the state with no active cases for the first time in almost nine months.
- Advanced Persistent Threats in 2021: Kaspersky Researchers Predict New Threat Angles and Attack Strategies to Comeon November 20, 2020 at 1:32 am
Kaspersky researchers have shared predictions related to Advanced Persistent Threats (APTs) in 2021, forecasting how the landscape of targeted attacks will change in the year ahead. The turmoil of ...
- AVG AntiVirus Free 2013 reviewon November 13, 2020 at 4:01 pm
This year, however, a mediocre 91% protection rate against zero-day threats puts it some way behind Avast Free Antivirus’s 98%. That might be excusable if AVG AntiVirus Free were otherwise a ...
- How FedEx, UPS & DHL Customers were Tricked by an Advanced Phishing Campaignon November 13, 2020 at 7:06 am
or zero-day attacks that are not recognized by traditional signature-based detection solutions, such as antivirus. An example of this is an April 2020 attack that delivered Dridex ransomware to ...
- Latest MyDoom may signal dreaded ‘Zero-Day’on November 9, 2020 at 4:00 pm
The newest version of the MyDoom virus suggests to security experts that the much-anticipated Zero-Day attack may have already arrived. Zero Day refers to an exploit, either a worm or a virus ...
- Update to iOS 14.2 now — Apple issues emergency iPhone security updateon November 5, 2020 at 1:20 pm
Why Apple iPhones don't need antivirus software iPhone 12 vs. iPhone 12 Pro: What's the difference? Apple didn't call these "zero-day" flaws, but that's what they are — vulnerabilities that are ...