Re: Spyware vs Virus,

[nospam <nospam () dranem org>]

I have seen AV Software ONLY find Virus /Trojan totally skipping know
adware/spyware infections
; and then purposely claim Spyware/Adware is NOT a Virus so it should
not be found and is excluded from from those known bad lists. [unless a
premium is paid] shame on them

then in the past two years it has only slight;y improved EXCEPT they now
SELL AN ADDITIONAL PRODUCT aimed at Spyware;

grumble; grumble ; grumble
This goes against my thinking of protecting my clients; and makes me
think less of the vendors

steve

Paul Halliday wrote:

> I was always under the impression that AV solutions offered moderate
> protection against the most prevalent Spyware attack vectors.
>
> On 9/15/06, IRM <irm () iinet net au> wrote:
>
> > I just thought maybe I will open a new discussion regarding Spy-ware.
> > Perhaps my question is related to the previous thread i.e. "AntiSpyware
> > Standards"
> >
> > I can't remember where I read but I read somewhere that the market for
> > AntiSpyware is much lesser than Antivirus. I think the figure for
> > AntiSpyware is around 15-20million USD compare to Antivirus with
> > hundreds of million dollars. It gives an impression to me that the
> > industry treats less cautious with spyware compares to Virus. Shouldn't
> > be the other way around? Because the trend for Spyware should
> > significantly increased over the year because people out there are
> > actually making money from it! What do you guys think about it?
> >
> >
> >
> >
> >
> > -----Original Message-----
> > From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
> > On Behalf Of Beauford, Jason
> > Sent: Saturday, September 16, 2006 5:41 AM
> > To: nospam; rolando_ruiz () jetaviation com
> > Cc: security-basics () securityfocus com
> > Subject: RE: Anti Spyware Standards
> >
> > nospam wrote:
> > > rolando_ruiz () jetaviation com wrote:
> > >
> > > > Hello Security world,
> > > >
> > > > I’m interested in professional opinion on best practices to reduce
> > > > spyware/Malware. Currently, we have only the protection of personal
> > > > firewalls and IDS which picks up spyware but does not remove it. I
> > > > argue that the focus should be on reducing the risk of high level
> > > > threat spyware instead of on preventing all of it 100% but it is
> > > > difficult to educate CIO and Directors whom do not have much of an
> > > > idea or security (in general). If anyone can share information on
> > > > steps you may have taken towards this issue successfully, I would be
> > > > thankful. It’s good to have different options on the table. ☺
> > > >
> > > > ________________________________
> > > >
> > > > Jet Aviation Holdings, Inc.
> > > > Rolando Ruiz
> > > > 113 Charles A Lindbergh Drive
> > > > 07608 Teterboro / United States
> > > > Tel.       +1 (201) 462 - 4094
> > > > Fax       +1 (201) 288 - 4892
> > > > rolando_ruiz () jetaviation com
> > > > www.jetaviation.com
> > > ad-aware from lavasoft
> > > spybot search destroy from spybot.info
> > > spywareblaster from javacoolsoftware.com tighten security zones
> > > install firefox use the advanced spybot -> hosts file to block known
> > > bad hosts spywareblaster blocks quite a lot too
> > >
> > >
> > > steve - evets
> >
> > Running a proxy, such as Websense or Surf Control to block unauthorized
> > websites.
> > Egress filtering
> > Network Monitoring/logging (check out NTOP or preferred tool)
> > Running in Least Privilege works to help mitigate adware/spyware as
> > well.
> >
> > jmb
> >
> > ---------------------------------------------------------------------------


---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------