• All Community
    • All Community
    • Forums
    • Ideas
    • Blogs
Advanced

Not what you are looking for? Ask the experts!

Kudos0

Statistics on the detection rate for each antiviral products (daily)

This test is updated every day at two o'clock in the morning on a sample of about 1000 threats (see details for the exact figure)

This test is based on the recognition of new threats with antivirus, why we call zero-day detection.

The principle of this test is very simple and can be made every day a quick opinion on detections of various antivirus products.
This test was created solely for informational purposes and is totally different tests offered by official bodies. We take the most
recent samples of our databases and we subject them to various antivirus products. Once out of the sample, we scan directly
with the latest update of antivirus products to show their effectiveness.

-Symantec products are near the bottom of the list with 9...

_https://threatcenter.crdf.fr/?Stats

Replies

Kudos0

Re: Statistics on the detection rate for each antiviral products (daily)

This test is updated every day at two o'clock in the morning on a sample of about 1000 threats (see details for the exact figure)

This test is based on the recognition of new threats with antivirus, why we call zero-day detection.

The principle of this test is very simple and can be made every day a quick opinion on detections of various antivirus products.
This test was created solely for informational purposes and is totally different tests offered by official bodies. We take the most
recent samples of our databases and we subject them to various antivirus products. Once out of the sample, we scan directly
with the latest update of antivirus products to show their effectiveness.

-Symantec products are near the bottom of the list with 9...

_https://threatcenter.crdf.fr/?Stats

Kudos1 Stats

Re: Statistics on the detection rate for each antiviral products (daily)

Yes, but it's a scan test. They just scan the files; Norton does not have strong signature detection for brand new files. However, Norton have several other ways to identify and block malicious files, none of which come into play in this test. If the file was downloaded, it would be checked against Symantec's huge cloud database of known good and bad files, and if it was executed, it would potentially be blocked by SONAR. If you look at "real world" tests, where the malicious files aren't just in a folder and scanned with signatures, Norton has been at or near the top in pretty much every test for years.

Accepted Solution
Kudos0

Re: Statistics on the detection rate for each antiviral products (daily)

For what it's worth, here is another daily zero-day test like the one you linked to:

http://www.shadowserver.org/wiki/pmwiki.php/AV/VirusDailyStats

Look which antivirus is at the top there...

One test means nothing. Consistency is the key. And Norton is consistently one of the top performers.

Kudos0

Re: Statistics on the detection rate for each antiviral products (daily)

Guess you're right... thanks for your clarification! :)

Kudos0

Re: Statistics on the detection rate for each antiviral products (daily)

Another example of how Norton would protect against a threat not in the signatures:

https://www.virustotal.com/file/c43d34f5de308f95b56ac14e14a9cd85b90b00c8b78d72525c4bc91000f1b132/analysis/

That piece of malware is, at this moment, brand spanking new and at the time I write this detected by the signatures of only 5 antiviruses. However, click on the "Additional information" tab at the bottom, and you will see "Symantec reputation: Suspicious Insight". So Norton would block it if it was downloaded, even though it is not in the Symantec database, because of the cloud reputation system. Most (not all, but many) of the other antivirus programs that do not have a definition for it would just let it through.

This thread is closed from further comment. Please visit the forum to start a new thread.