During last 3 weeks I send to the NortonLifeLock Malware Laboratory sample of malware for analysis, but the results of their analysis have very poor quality. This sample is real malware, but they don't have enough skills to understand that, so every single time when I send this file to them they refuse to add a signature for it. I like NortonLifeLock, but this company has several unskilled employees who shame the company. That's sad.
I tested this malware sample on my virtual machine for this forum's threat. Here's the result of my testing(YouTube video). After watching this video demonstration of this malware you will understand that this file is malicious.
But unskilled employees of NortonLifeLock Malware Laboratory don't have enough skills to understand that. Here are the results of their "analysis" of this malware sample.
I continue to hope somewhen employees will pay attention to this thread.
tomas_he:
I understand you are concerned about the initial review of your sample submission and it has been shared with the relevant teams.
Thank you for your feedback.
Watch this YouTube video, please.
tomas_he:
I understand you are concerned about the initial review of your sample submission and it has been shared with the relevant teams.
Thank you for your feedback.
Not just "the initial review"! As you can see on my pictures 6 reviews!
I understand you are concerned about the initial review of your sample submission and it has been shared with the relevant teams.
Thank you for your feedback.
tomas_he:
Hi @Kristal9,
We have added the detection for the file. Your feedback was provided to the relevant teams.
Thank you.
As I said before, the problem is not this file, the problem is skills of malware analysts. What is the reason that malware analysts mark a lot of malwares as "Threat artefact"?
Hi @Kristal9,
We have added the detection for the file. Your feedback was provided to the relevant teams.
Thank you.
I still wait a response from admins.
peterweb:
We have no way to know. As I mentioned, we are not Norton employees and those decisions are made by the forum admins.
So forums admins should know that, right?
We have no way to know. As I mentioned, we are not Norton employees and those decisions are made by the forum admins.
peterweb:
Your thread has been escalated, and that is all we can do for you.
Which department? Management or Malware Laboratory? This thread should be escalated to Management Department.
Except for the forum admins, we are just users like you who volunteer our time to try to help others from our experience with the Norton products.
Your thread has been escalated, and that is all we can do for you. It is up to the departments that received the information on what contact if any they want with a user.
I need to connect with management representatives to discuss about this issue.
peterweb:
Probably not. The only chance is if the department will actually allow someone to post here. Normally, we do not have any direct connection with any of the engineers or programmers.
Yeah, after your escalation of this threat these guys added signature for this file, BUT the problem is not this one file, the problem is their knowledges. When I created this threat they was unskilled, and after they added this one signature they remained be still unskilled. No any changes. Just one signature.
To exam their knowledges after escalation of this threat I repeated the same actions but with another malware. And they again said that it's "Threat artifact", so as I understood they call "Threat artifact" all malwares which they don't have enough skills to analyze. Here's the video on Odysee of my testing of this malware. The picture below is the result of NortonLifeLock Malware Laboratory.
I found out NortonLifeLock should fire unskilled employees(who shame the company) and to employ real professionals. So this thread should be escalated not to Software Engineering Department, this thread should be escalated to Employment Department.
Probably not. The only chance is if the department will actually allow someone to post here. Normally, we do not have any direct connection with any of the engineers or programmers.
peterweb:
Done.
Can I get feedback from them?
peterweb:
The best we can do for you here is to escalate this thread so that the concerned department is made aware of your comments.
I think, it's a good idea.
Can administrators answer me on the question in the title of this threat?
The forum admins are just that. They moderate and manage the Norton Community forums. They are not connected to the malware labs and would not be in a position to comment on your question/comment on the abilities, or lack of ability of another department.
The best we can do for you here is to escalate this thread so that the concerned department is made aware of your comments.
Kristal9:
Can administrators answer me on the question in the title of this threat?
Grammatical corrections: when I wrote the word "threat" I was meaning "topic".