Thursday, October 26, 2006

Rutkowska: Anti-virus Software Is Ineffective

Of course, I'm still aware that it's not enough, as somebody can embed a very reliable and "silent" zero-day exploit for my .TXT editor in some README file. Or that they can find a bug in my Wi-Fi driver. Or an attacker can inject an exploit for my browser after setting up a man-in-the-middle attack in a hotspot at the airport.

So, from time to time, I might run some custom tools of mine to check the integrity of my system or start Wireshark to see what my traffic looks like. In other words, I'm not very satisfied with the existing commercial solutions, because I know how easy it is to create malware to bypass them all.

No comments:

Post a Comment