Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

Antivirus software a waste of money for businesses, report suggests

Poor detection means that free programs offer better value

Article comments

Antivirus software is now so ineffective at detecting new malware threats most enterprises are probably wasting their money buying it, an analysis by security firm Imperva has concluded.

Reports questioning the protection offered by antivirus suites has become a staple theme among researchers in recent times and the study Assessing the Effectiveness of Anti-Virus Solutions, carried out for Imperva by the University of Tel Aviv, is another addition to that sobering collection.

The team ran a collection of 82 new malware files through an online malware-checking system that tests files against around 40 different antivirus products, finding that the initial detection rate was a startling zero.

The company then ran the same scan a number of times at intervals of a week apart to see whether detection improved over time, discovering that even the best-performing products took at least three weeks to add a previously undetected sample to their databases.

Across products, 12 files that were poorly detected when new were still not detected by half of the software when scanned at later dates. In some detections, files were simply marked as "unclassified malware,” a designation that would harm the effectiveness of malware removal.

It is hard to say which individual products did best from this bad job (readers can judge for themselves on Imperva’s website) but there appeared no connection between popularity and success.

More strikingly, Imperva’s researchers end up recommending two free antivirus products, Avast and Emisoft, as the “most optimal” of those looked at with McAfee an acceptable performer too.

So what about businesses?

According to Imperva, organisations continue to buy licensed antivirus software because compliance regimes mandate that they should do so. This stipulation should be eased to allow them to use free products instead, putting the money saved into other forms of security, the company suggested.

“To be clear, we don’t recommend eliminating antivirus.  We do, however, recommend rebalancing and modernizing security spend to meet today’s threats,” said the report.

Using Gartner figures, Imperva reckoned that antivirus software was consuming around a third of total software security spend, an investment not justified by its returns.

“Enterprise security has drawn an imaginary line with its anti-virus solutions, but the reality is that every single newly created virus subverts these solutions without challenge,” commented Imperva’s CTO, Amichai Shulman.

 “We cannot continue to invest billions of dollars into anti-virus solutions that provide the illusion of security, especially when freeware solutions outperform paid subscriptions.”

Admins might equally point out that free antivirus programs are aimed at consumers and rarely offer the sort of business deployment and management capabilities they require.

In August NSS Labs noticed that many antivirus products were unable to block malware attacks exploiting two prominent Microsoft vulnerabilities that had been patched weeks before.

Over the years a variety of new technologies have been employed to improve antivirus security, usually now defences built into programs such as browsers; at least one startup, ZeroVulnerabilityLabs, has launched a beta of a plug-in that abandons malware detection entirely in favour of simply blocking the software flaws exploited by malware to gain control of PCs.



Share:

More from Techworld

More relevant IT news

Comments

jcharler89 said: Signature based antivirus products are not infallibleWhat a amazing piece of new incredible difficult to know knowledgeVery sarcasticMany business and people dont care enough about software until its too late

Mai Katayama said: I dunno we use Unthreat Antivirus and our IT says it does a pretty good job protecting the network One should also show caution while surfing the internet though

nyyn said: ur rite

Michael Argast said: Vendor with technology to sell bash other vendors with established technology using simplistic methodology News at 11But seriously vendors with something to sell see whitelisting WAF etc have been playing this card for years by incorrectly reframing the Anti-Virus vs malware discussion based on VirusTotal and other tool sets that dont understand both the attack chain and how modern Endpoint security deals with itOh and by the way I have a stake in this game on both sides - my organization sells Imperva as well as Anti-Virus technology - both have their place

The Dude said: This stipulation should be eased to allow them to buy free products instead putting the money saved into other forms of security the company suggestedYou dont buy free products you just use them LOL

Loutog said: The article you referenced is not found searching for it on Impervas website You should have provided a link



Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *