Antivirus Software Is Dead, Says Security Expert at Symantec
TECHNOLOGY, 12 May 2014
Information chief at Norton developer says software in general misses 55% of attacks and its future lies in responding to hacks.
Antivirus software only catches 45% of malware attacks and is “dead”, according to a senior manager at Symantec.
Remarks by Brian Dye, senior vice-president for information security at the company, which invented commercial antivirus software in the 1980s and now develops and sells Norton Antivirus, suggest that such software leaves users vulnerable.
Dye told the Wall Street Journal that hackers increasingly use novel methods and bugs in the software of computers to perform attacks, resulting in about 55% cyberattacks going unnoticed by commercial antivirus software.
Malware has become increasingly complex in a post-Stuxnet world. Computer viruses range from relatively simple criminal attacks, where credit card information is targeted, to espionage programs that spy on users and data but can easily be upgraded into cyberweapons at the touch of a button, according to security expert Eugene Kaspersky, founder of Kaspersky Lab, which also sells antivirus software.
From protect to ‘detect and respond’
That failure to detect issues is forcing Symantec, which has a turnover of about $1.6bn (£590m) and an 8% global antivirus marketshare – according to data from the enterprise software company Opswat – to diversify its products, moving into the “detect and respond” sector rather than the simple “protect” segment.
The switch to the detect and respond paradigm means tracking data leaks, hacks and other intrusions and preventing further repercussions from stolen data. For users, that means changing passwords, but for businesses that often means stopping access to accounts and services that have been subject to data loss or infiltration, as well as tracking the source of the intrusion and shoring up cyberdefences – something governments have been doing with new cyber response teams.
Antivirus still accounts for 40% of the company’s revenue, however, and while other security companies such as Kasperky and Intel’s McAfee have already moved in that direction, Symantec lags the movement.
• Eugene Kaspersky: it’s no longer a case of whether a major cyberterrorist attack on the scale of that portrayed in Die Hard 4 will occur but when
DISCLAIMER: The statements, views and opinions expressed in pieces republished here are solely those of the authors and do not necessarily represent those of TMS. In accordance with title 17 U.S.C. section 107, this material is distributed without profit to those who have expressed a prior interest in receiving the included information for research and educational purposes. TMS has no affiliation whatsoever with the originator of this article nor is TMS endorsed or sponsored by the originator. “GO TO ORIGINAL” links are provided as a convenience to our readers and allow for verification of authenticity. However, as originating pages are often updated by their originating host sites, the versions posted may not match the versions our readers view when clicking the “GO TO ORIGINAL” links. This site contains copyrighted material the use of which has not always been specifically authorized by the copyright owner. We are making such material available in our efforts to advance understanding of environmental, political, human rights, economic, democracy, scientific, and social justice issues, etc. We believe this constitutes a ‘fair use’ of any such copyrighted material as provided for in section 107 of the US Copyright Law. In accordance with Title 17 U.S.C. Section 107, the material on this site is distributed without profit to those who have expressed a prior interest in receiving the included information for research and educational purposes. For more information go to: http://www.law.cornell.edu/uscode/17/107.shtml. If you wish to use copyrighted material from this site for purposes of your own that go beyond ‘fair use’, you must obtain permission from the copyright owner.