For many years, AV-Comparatives’ protection tests have included a false-positives test, to ensure that security products do not provide protection at the expense of plaguing the user with false alarms. From time to time, enterprise users send us false-positives samples that they have encountered themselves. This is very helpful to us in our research, and so we are now making it easier to submit FPs to us.
Security News
On this page you will find links to selected IT-security related news articles from various sources, including news from conferences and some test results. Posts in this category might be written by externals and students. If you find some interesting news, please let us know!
Stay tuned with AV-Comparatives – RSA and BSides San Francisco
As we move towards an increasingly digital world, the importance of cybersecurity cannot be overstated. As technology evolves, so do the threats associated with it, making it crucial for individuals and organisations alike to stay up-to-date on the latest news and trends in IT security.
Upcoming AV-Comparatives’ Certification Tests 2023
As in previous years, we will be running certification tests for the following products:
- Anti-malware programs for macOS
- Anti-malware apps for Android
- Phishing protection for Windows and other platforms
- Parental control features for Windows and other platforms
- VPN programs for Android and Windows
We also offer various enterprise security tests, EPR/EDR tests and penetration tests.
Security vendors interested in any of above tests are invited to contact us no later than the 31st of March 2023.
AV-Comparatives Prolongs ISO 9001:2015 Certification for Independent Testing of Anti-Virus Software
We are happy to announce that AV-Comparatives has been recertified as an ISO 9001:2015 testing lab. TÜV Austria have renewed the certificate for our management system with the scope “Independent Tests of Anti-Virus Software”.
Beware of Fake Online Shops and Fake Websites
In recent years, the Internet has become an indispensable part of our daily lives. We use it for communication, shopping, entertainment, and more. Unfortunately, with the convenience of the Internet comes the potential for malicious actors to exploit it. Two of the many forms of deception used by cybercriminals are fake online shops and fake websites (the latter also known as phishing websites). Whilst these may sound similar, they are in fact quite different forms of deception, and so different measures are required to avoid falling victim to them.
AVAR 2022 Conference in Singapore
The AVAR 2022 Cybersecurity Counterpunch conference is taking place on 1st and 2nd December.
AV-Comparatives is supporting the AVAR security conference again this year, organised by the Association of Anti-Virus Researchers Asia. AVAR 2022 is the 25th edition of AVAR’s international conference, and the event is taking place on the 1st and 2nd of December 2022 in Singapore. Full details and the registration form can be found on the organisation’s website: https://aavar.org/cybersecurity-conference/
LSASS credential-dumping security
Windows’ Local Security Authority Subsystem Service (LSASS) is one of cybercriminals’ targets when launching targeted attacks on an organisation’s network. In this blogpost, we discuss the significance of this process to targeted attacks.
The balance between performance (low speed-impact) and real-time detection
In the past, a common complaint about antivirus programs was that they had a major impact on system performance, i.e. made the PC run more slowly in everyday use. Nowadays, anti-virus products use different optimization techniques to reduce system impact and disruption of everyday tasks.
In this blog post we want to answer the question as to whether any of the performance-enhancing measures taken by anti-virus vendors might have an impact on products’ ability to detect malware under some circumstances. To this end, we checked whether anti-virus products consistently detect malware in specific scenarios.
Uninstalling antivirus programs: challenges and solutions
Have you ever tried to remove a program from your computer, and found that bits of it were left behind? If so, you will realise that not all uninstallers remove their programs completely, and that the leftovers can cause problems like error messages and wasted disk space. In the case of antivirus programs, which are deeply integrated into the Windows operating system, an incomplete uninstallation can be particularly problematic. It might be impossible to install a new AV program if its installer finds traces of the previous product. So, if you need to remove one AV product in order to install a different one, the issue of AV uninstallation becomes important.
In a test commissioned by the German PC Magazin (Ausgabe 06/2022), AV-Comparatives recently carried out an uninstallation test of 16 popular consumer antivirus programs (PDF version available here).
AV-Comparatives tests Anti-Virus Software protection against the Hermetic Wiper malware
Austrian IT-security testing lab AV-Comparatives has tested protection against the recently-emerged Hermetic Wiper malware.
The data-wiping malware has been used in international targeted attacks. Its aim is not to steal money or data, but simply to make victims’ computers unusable. To do this, it abuses the services of a legitimate company that makes disk partitioning software. This type of utility can create, modify and delete the data storage areas (partitions) of a computer’s system disk. Hermetic Wiper makes (unauthorised) use of this useful utility program to corrupt the system disk’s boot information, meaning that the computer cannot start up. The malware then overwrites the partitions on the disk, making the data on them unreadable, even if the disk is transferred to an uninfected computer.