Re: Spyware vs Virus,

["Paul Halliday" <paul.halliday () gmail com>]

I was always under the impression that AV solutions offered moderate
protection against the most prevalent Spyware attack vectors.

On 9/15/06, IRM <irm () iinet net au> wrote:
> I just thought maybe I will open a new discussion regarding Spy-ware.
> Perhaps my question is related to the previous thread i.e. "AntiSpyware
> Standards"
>
> I can't remember where I read but I read somewhere that the market for
> AntiSpyware is much lesser than Antivirus. I think the figure for
> AntiSpyware is around 15-20million USD compare to Antivirus with
> hundreds of million dollars. It gives an impression to me that the
> industry treats less cautious with spyware compares to Virus. Shouldn't
> be the other way around? Because the trend for Spyware should
> significantly increased over the year because people out there are
> actually making money from it! What do you guys think about it?
>
>
>
>
>
> -----Original Message-----
> From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
> On Behalf Of Beauford, Jason
> Sent: Saturday, September 16, 2006 5:41 AM
> To: nospam; rolando_ruiz () jetaviation com
> Cc: security-basics () securityfocus com
> Subject: RE: Anti Spyware Standards
>
> nospam wrote:
> > rolando_ruiz () jetaviation com wrote:
> >
> >> Hello Security world,
> >>
> >> I’m interested in professional opinion on best practices to reduce
> >> spyware/Malware. Currently, we have only the protection of personal
> >> firewalls and IDS which picks up spyware but does not remove it. I
> >> argue that the focus should be on reducing the risk of high level
> >> threat spyware instead of on preventing all of it 100% but it is
> >> difficult to educate CIO and Directors whom do not have much of an
> >> idea or security (in general). If anyone can share information on
> >> steps you may have taken towards this issue successfully, I would be
> >> thankful. It’s good to have different options on the table. ☺
> >>
> >> ________________________________
> >>
> >> Jet Aviation Holdings, Inc.
> >> Rolando Ruiz
> >> 113 Charles A Lindbergh Drive
> >> 07608 Teterboro / United States
> >> Tel.       +1 (201) 462 - 4094
> >> Fax       +1 (201) 288 - 4892
> >> rolando_ruiz () jetaviation com
> >> www.jetaviation.com
> >>
> >>
> >>
> >>
> > ad-aware from lavasoft
> > spybot search destroy from spybot.info
> > spywareblaster from javacoolsoftware.com tighten security zones
> > install firefox use the advanced spybot -> hosts file to block known
> > bad hosts spywareblaster blocks quite a lot too
> >
> >
> > steve - evets
> >
>
> Running a proxy, such as Websense or Surf Control to block unauthorized
> websites.
> Egress filtering
> Network Monitoring/logging (check out NTOP or preferred tool)
> Running in Least Privilege works to help mitigate adware/spyware as
> well.
>
> jmb
>
> ---------------------------------------------------------------------------
> This list is sponsored by: Norwich University
>
> EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
> The NSA has designated Norwich University a center of Academic Excellence
> in Information Security. Our program offers unparalleled Infosec management
> education and the case study affords you unmatched consulting experience.
> Using interactive e-Learning technology, you can earn this esteemed degree,
> without disrupting your career or home life.
>
> http://www.msia.norwich.edu/secfocus
> ---------------------------------------------------------------------------

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------