I know people will look for excuses for that fail, but it looks like it simply didn't detect that rootkit, with any of the layers of protection, not by definitions and not with SONAR. Of course, nothing is 100% and this will happen to any and all security products, but a fail it was.

Worse, though, I think, becuase malware slipping through the defenses will happen if you have a folder full of malware and execute one after the other, is the fact that Norton was killed so easily by the malware.

This is shocking !!

Two months ago this same reviewer,Languy99, also tested a late in the beta process beta version of NIS 2012. That test also resulted in malware totally disabling and removing NIS 2012 (Beta) resulting in a massive fail in blocking malware.

http://www.youtube.com/user/languy99?blend=1&ob=5#p/u/16/tCRf7V_VE0o

It appears that there is a serious, confidence-shaking defect in NIS 2012 self-protection.

This is not good (understatment)

This needs to be reported to Symantec Tech ASAP.

This must not be ignored. Perhaps if so many had not tried to defend NIS Beta with a bunch of questionable excuses from the failed results of the test of the beta version and the self protection problem was properly reported to Symantec Tech at that time this might have been fixed in the final, which it wasn't

In adition, in this test I saw at least 2 instances where Download Insight failed to respond in any way to the downloaded program. This indicates that the problem as previously discussed in this thread :http://community.norton.com/t5/Norton-Internet-Security-Norton/Is-Download-Insight-Working-in-NIS-20...  may be more than an isolated incident.

"

This must not be ignored. Perhaps if so many had not tried to defend NIS Beta with a bunch of questionable excuses from the failed results of the test of the beta version and the self protection problem was properly reported to Symantec Tech at that time this might have been fixed in the final, which it wasn't

In adition, in this test I saw at least 2 instances where Download Insight failed to respond in any way to the downloaded program. This indicates that the problem as previously discussed in this thread :http://community.norton.com/t5/Norton-Internet-Security-Norton/Is-Download-Insight-Working-in-NIS-20...  may be more than an isolated incident.  "



+1

---

ace11 wrote:

:http://community.norton.com/t5/Norton-Internet-Security-Norton/Is-Download-Insight-Working-in-NIS-20...  may be more than an isolated incident.  "

 



+1

---

Link dead.. http://community.norton.com/t5/Norton-Internet-Security-Norton/Is-Download-Insight-Working-in-NIS-20...

Seems related to http://community.norton.com/t5/Norton-Internet-Security-Norton/Reputation-scan-cannot-cannot-to-Inte...

Will this work? There is a comment on this video on YouTube that says:

"there is way to prevent this, you just simply give it a password then anything that wants to modify or delete Norton will need permission (I know, most users won't think to do that)."

Would this have any effect on the rootkit's ability to disable Norton or is it likely that the rootkit would by-pass the Password the same way it by-passed NIS's "self-protection."

[FWIW: There is a internet security suite self-protection test done by Anti-Malware Test Labs where NIS 2011 scored 91%. While NIS 2011 did not do the best on the test (4 products scored higher), its self - protection results on this test  can be considered to be relatively good, if anything less than 100% can be considered "good", (15 products scored lower) and it received a Gold Award]

http://www.anti-malware-test.com/?q=node/190

---

hok wrote:

Will this work? There is a comment on this video on YouTube that says:

 

"there is way to prevent this, you just simply give it a password then anything that wants to modify or delete Norton will need permission (I know, most users won't think to do that)."

 

Would this have any effect on the rootkit's ability to disable Norton or is it likely that the rootkit would by-pass the Password the same way it by-passed NIS's "self-protection."

 

[FWIW: There is a internet security suite self-protection test done by Anti-Malware Test Labs where NIS 2011 scored 91%. While NIS 2011 did not do the best on the test (4 products scored higher), its self - protection results on this test  can be considered to be relatively good, if anything less than 100% can be considered "good", (15 products scored lower) and it received a Gold Award]

 

http://www.anti-malware-test.com/?q=node/190

 

 

---

Most likely the root kit is tricking Norton into thinking its the Norton Removal Tool, IMO.

This is big fail from Symantec. Norton tamper protection should protect Norton from modifying Norton files but in this case it failed.

BIG FAIL! 

Next time in 2013 version more work in protecting Norton disabling by viruses not just give us new skin and say tada this is new

NIS 2012.