Protecting over 200 million PCs, Macs, & Mobiles – more than any other antivirus

Archive

Archive for August, 2009
August 28th, 2009

Greetings from Redmond

We have spent the last week in the main Microsoft campus in Redmond, WA, making sure avast! works great on Windows 7. As a matter of fact, we have had two teams here working in parallel: one that takes care of interoperability issues (interoperability with both the new OS as well as other software applications) and one for the logo certification.

And what a week it was! Read more…

August 19th, 2009

Win32:Induc, new concept of file infector?

A few days ago, Andreas Marx (independent AV tester) sent all AV companies a file infected by “Delphi Source Code infector”. This file was linked by chip.de and a few others. Two days ago an analysis of this innovative file infector was published by Kaspersky Lab and F-Secure. But this is just the recent media bubble. This virus is actually several months old and all AV companies were blind. Why? Read more…

Categories: analyses, Virus Lab Tags: , ,
August 18th, 2009

130 Million Credit/Debit Cards Stolen

I read an interesting article today: http://news.yahoo.com/s/ap/20090818/ap_on_bi_ge/us_hacker_charges

It is about the leader of a hacking ring being indicted for stealing the details of 130 million credit and debit cards in the US. This is not necessarily a new development as he was actually already in jail on similar previous charges dating back to 2006. But the sheer size is astounding. Some of the highlights and lessons for us: Read more…

August 12th, 2009

Exploit Pack as the way to infect!

Various exploit packs are getting very popular these days. Using them is easy way to infect thousands computers around the world.  Each exploit package is composed of several exploits (mostly actual vulnerabilities).  Sometimes it is single file which contains all the exploits. More often, each exploit is represented by a different file. This technique seems to be more successful for attack, because antivirus software may detect only part of the exploit pack. The rest of the pack which is still undetected may serve new malware to users. This article describes the structure and activities of one of the more complex exploit pack.

Read more…

Categories: analyses, Virus Lab Tags:
August 10th, 2009

What is avast! responsible for?

The question sounds promising, right? You’ll finally understand everything that avast! does while it’s running on your machine. However, this article is intended to discuss the topic from the other side – what avast! is absolutely not doing on your PC. The inspiration to write this article came from my short discussion with Vince. This article should continue the aim of his posts in making things clearer. I’m not used to writing such posts, I’m rather technically based, so if you have any questions, feel free to use the comments and ask me. So, let’s consider the main points.

Read more…

Categories: General Tags: , , , ,
August 6th, 2009

Can you Trust Free Anti-Virus? (Part 2)

It seems that the article I quoted in my previous blog entry (http://tech.blorge.com/Structure:%20/2009/07/04/symantec-its-dangerous-to-rely-on-free-antivirus/) generated a fair amount of interest and disagreement. And the general opinion seems to be the same as what I posted in my blog entry—that the major free antivirus solutions are in fact very good. Read more…

Categories: CEO's corner Tags:
August 4th, 2009

Who is a typical avast! user?

There seems to be a common belief that the users of avast! and other free anti-virus products are real technical or somehow different from the “normal” population. Of course we know this is not really true….it is true that they are different in that they understand it is not necessary to use a product from the big paid vendors to get the protection they need. But, other than that our users are representative of the world as a whole—they are you, me, our parents, and our friends. We are all pretty normal. Read more…

Categories: CEO's corner Tags: , ,
August 4th, 2009

Can you Trust Free Anti-Virus?

I ran across an interesting article the other day that questions whether a user can rely upon free anti-virus: http://tech.blorge.com/Structure:%20/2009/07/04/symantec-its-dangerous-to-rely-on-free-antivirus/. The source of the quotes in the article is of course one of the big paid anti-virus companies.  And it erroneously concludes that free products cannot be trusted, are not sufficient, etc. But then again why should a firm that makes a billion dollars a year off of paid anti-virus conclude that a free anti-virus product is good…..

The article does make very good points about what is needed in a security product. Its only error is in concluding that a free product does not provide these capabilities. So, here are the points the article makes and why they are wrong (at least for avast): Read more…

August 2nd, 2009

Inside Win32:AOC

Win32:AOC aka Anvil of Crom is a small file infector written by Bumblebee. It appends own code to the last section of exe and dll files. The virus body is encrypted with more than one layer.

aoc_stg0 Read more…

Comments off