• Skip to main content
  • Skip to primary sidebar
  • Skip to footer

securitywing

Menu
  • About
  • Must Read
      • IIS Performance Boost
      • RFID Security
      • Web App Security Testing
      • How to Secure Home Network
      • Prevent Cross-Site Scripting Attacks
      • Renew Self-Signed Certificates
      • Penetration Testing Tools
      • VPN Concentrator
      • Forensic Investigation Tools
      • Digital Certificates
      • Cloud Security Issues
      • Advanced Evasion Prevention
      • Firewall Types
      • Tips to Prevent Data Exfiltration
      • Classified Info Handling
      • MySQL Security
      • Definition of 7 Types of Malware
      • VOIP Security
      • Why Antivirus Software Fails
      • 15 Network Security Vulnerabilities
      • Web App Security
      • IT Security Standards
      • Types of Virtualization
      • Android Security
      • Digital Signature
      • Advanced Malware Protection
    • Close
  • Consultancy
  • Contact

Why Antivirus Software Fails to Detect Latest Viruses and Malwares

by wing

We use antivirus software in the hope of having a secure system. Though any virus detecting software can detect viruses, we need to know that there are instances when viruses and malware remain undetected. The post aims to give you a brief idea on the situation when your antivirus may fail to detect the presence of malware in your computer.

Most of the virus detection software depends on virus definition stored in the virus definition file. Each virus is written with specific a set code which is also called signature or fingerprint. The virus definition file contains that signature (a code snippet).

antivirus engine and virus database

When the antivirus software starts scanning it look for specific signature in the files and applications. If there it does not find any known signature in the file, it declares it safe.

So, it appears that antivirus software may fail to detect viruses when:

  • It does not have an updated database and antivirus engine.
  • If there is a zero-day malware( a vulnerability or malware that is not known to us)
  • When you do not allow automatic update to your virus signature files and engine.
  • User can manually set action on threat detection and the location of scan.
  • Heuristic settings such as users are allowed to set security level of antivirus software. When you set security level to high, you get maximum protection against malware.
  • Most AV struggle to detect new virus. When it encounters new malware behaviour, it takes heuristic action based on the rule-set. If the rule-sets determine the new behaviour as safe, then the virus will remain undetected.
  • Modern day antivirus signature-database misses many new virus signatures. Moreover, not all vendors have same signature database. So, it is impossible to know which vendor has the most up-to-date database.
  • If you accidentally allow a well-known application already infected with malware to continue to run by putting it in the whitelisted application in your AV program, your system will always remain unsecure.
  • Malware creators encrypt their executable files in such a way that it remains unintelligible to the virus scanners.

why anitvirus fails

Users need to know:

  • When you update virus software you need to make sure that your scanning engine (the piece of software that you use to scan the scan) are updated along with new virus definition files. Failure to update both the software may result in may new viruses slipping by your scanner undetected, thus making your system vulnerable to be being compromised.
  • Most of the modern day antivirus does not show any visible sign of infected unlike old days’ viruses. So, if you find that your scanner is not detecting any virus and your system running normal, it does not mean that your system is secure.
  • Many virus users do not understand the difference between the antivirus and paid antivirus. When their free antivirus shows that the system is virus free they feel a false sense of security. But in reality, their computers are already infected and the free antivirus fails to detect it.
  • It is almost certain that nearly 100% of the zero-day malware will not be detected by the scanner.

Related Posts:

  • Top Antivirus Buying Tips for Home Users

Filed Under: Internet Security and Safety Tagged With: antivirus

Primary Sidebar

CISSP Sample Test

Take a CISSP Sample Test

CISA IT governance Sample test



Twitter Follow @securitywing

Categories

  • AWS
  • containers
  • Internet Security and Safety
  • IS Audit
  • IT Security Exams
  • Network Security Tips
  • Off Track
  • Telecom
  • Tutorial

Pages

  • About
  • Best IT Security Certification Exam
  • CISA IT governance Sample test
  • CISA Sample Test
  • CISSP Sample Test Online
  • Consultancy
  • Contact

Popular Posts

  • 8 Effective Ways to Impro...
  • 3 Steps to Install Miniku...
  • Yahoo Mail Security Setti...
  • How to Setup AWS CloudFro...
  • 5 Steps to Setup a Nexus3...
  • 3 Simple Steps to Capture...
  • How to Configure AAA (TAC...
  • How to Install AWS CLI an...
  • How to Configure SNMP in...
  • How to Renew Self-Signed...

Footer

Copyrights

Protected by Copyscape Duplicate Content Detection Software

Securitywing.com reserves the copyrights of all of its published articles.No contents of this site is permitted to be published to anywhere else in the Internet.If any contents are found in any other websites, securitywing reserves the rights to file a DMCA complaint. But you have the right to use the link of any relevant article of this site to point from your website if you consider that it might improve the quality of your article.

Tags

antivirus audit AWS backup browser check cisco cloud computer cyber data database encryption firewall home hsrp ids informaiton internet intrusion it kubernetes linux load balancing malware network protection putty risk router security security tips server ssh SSL switch tools virus vpn vulnerability web webserver website windows wordpress

Copyright © 2010-2023 ·All Rights Reserved · SecurityWing.com