Nitro and Q1Labs Sold

McAfee to Aquire NitroSecurity.   IBM to aquire Q1Labs. Can anyone think of an example where a big company bought a smaller security company and the product got better?  We could spend the reset of the day talking about products that became moribund or were abandoned altogether because some big company thought they were missing an important piece …

Continue reading ‘Nitro and Q1Labs Sold’ »

Staging Virus Definition Updates

In the wake of McAfee’s false positive that rendered Windows XP computers unbootable there has been a lot of talk. What I wanted to talk about today was the staging of virus definition updates. I saw a lot of comments that companies took the McAfee update and deployed it company-wide without any testing. I dont …

Continue reading ‘Staging Virus Definition Updates’ »

Comcast to warn of infected machines

This week numerous sources reported on news that Comcast will deliver popups to alert customers with infected machines. I agree with Phil Lin, marketing director at network security firm FireEye Inc as reported in the linked AP story above, if this catches on we’ll soon see this used in social engineered attacks. According to Brian …

Continue reading ‘Comcast to warn of infected machines’ »

AVComparatives Corporate Review

AVComparatives has posted a review of corporate products at http://www.av-comparatives.org/comparativesreviews/corporate-reviews. This test includes AVIRA, ESET, GDATA, Kaspersky, Sophos, Symantec and Trustport. No mention of McAfee or Trend Micro who I believe would both be in the top three deployed corporate endpoint protection solutions. The report includes a detailed table comparing the available features of the …

Continue reading ‘AVComparatives Corporate Review’ »

AV-Comparatives Performance Test

AV-Comparatives has released a test report comparing antivirus performance during boot, file copy and file compression. To access the report, go to av-comparatives.org, click on Comparatives, and scroll down to the Performance Test report. I’m always disappointed that the tests focus on consumer products (although Sophos is included. I’m more interested in Symantec Endpoint Protection …

Continue reading ‘AV-Comparatives Performance Test’ »

Sophos Endpoint Security Eval Thoughts

This week I began a evaluation of Sophos Endpoint security. (why do I get the feeling all over the country sales guys just perked up and began repeating “sales lead” to themselves). Currently we’re using Symantec Antivirus 10. I’m looking to consolidate antivirus, antispyware and the personal firewall into one product. We also want more …

Continue reading ‘Sophos Endpoint Security Eval Thoughts’ »

Yet Another SEP11 problem

I wrote last week how my Vista tablet cratered shortly after I installed Symantec Endpoint Protection 11. I’ve rebuilt that computer, and decided not to do any more testing with SEP for a while. If I didn’t have Symantec coming in sometime soon for a NAC demo I’d be evaling McAfee Total Protection Enterprise. Today …

Continue reading ‘Yet Another SEP11 problem’ »

Article: Color Me Complex

Information Security Mag has an article by Ed Skoudis and Matt Carpenter in which they do a bake off between several endpoint protection products. http://searchsecurity.techtarget.com/magazineFeature/0,296894,sid14_gci1280028_idx1,00.html (not sure if non-subscribers can view that or not. Its free to sign up or try bugmenot). This will make all the Symantec bashers angry, but it actually comes out …

Continue reading ‘Article: Color Me Complex’ »