Menu
Microsoft: Competing AV vendors need to remember who the bad guys are

Microsoft: Competing AV vendors need to remember who the bad guys are

Some vendors, particularly in China, are playing hardball to get their antivirus products installed

AV vendors, in fierce competition for users, should remember that cooperation is key in fighting malware, a top Microsoft security official said Friday.

Data sharing between vendors has resulted in a drop in the overall number of malware families affecting computers, said Dennis Batchelder, director of the Microsoft Malware Protection Center, at a conference of the Association of Antivirus Asia Researchers in Sydney.

The numbers of computers encountering one of those top 20 families of malware have dropped from 24 million a month to 13 million a month over the last two years, he said.

Batchelder said the data covers broad-spectrum malware and not mobile threats or so-called "advanced persistent threats," a label usually attached to more sophisticated, targeted attacks.

The improvement is due in part to better cooperation among security companies, which in turn have become a lot better at automating the processing of new malware samples and using big data and cloud computing to analyze it, Batchelder said.

But there are new companies into the antimalware field, which sometimes don't play fairly, he said.

"We have to remember who the bad guys are," Batchelder said. "It's not each other."

Antivirus software is a money spinner for the industry even though experts say it may miss highly targeted attacks. But it is still recommended that consumers use an AV product, as it can block standard malware that steals login credentials or personal data.

But Batchelder said in the last year he has seen several antivirus products wrapped into bundles of unrelated software. He saw one example where AV was included in a fake Java update. The AV program was legitimate, but the same installation technique is used by hackers to trick people into installing malware.

"If we're not careful, AV is going to turn into unwanted software," he said.

In China, antivirus vendors have at times engineered their products to remove their competitors' products from people's computers, he said.

In other cases, users may be blocked from running an AV program unless another application is removed, such as a chat app. The situation may occur if a software company isn't a pure play security vendor and offers other products, such as a search toolbar. That essentially turns AV into a weapon, Batchelder said.

Remedying the scenario means holding marketing departments accountable, Batchelder said.

"If we fall in a heedless pursuit of competitors, we hurt our customers," he said. "We have a job to do."

Send news tips and comments to jeremy_kirk@idg.com. Follow me on Twitter: @jeremy_kirk

Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags MicrosoftsecurityDesktop securityExploits / vulnerabilitiesmalware

Featured

Slideshows

Educating from the epicentre - Why distributors are the pulse checkers of the channel

Educating from the epicentre - Why distributors are the pulse checkers of the channel

​As the channel changes and industry voices deepen, the need for clarity and insight heightens. Market misconceptions talk of an “under pressure” distribution space, with competitors in that fateful “race for relevance” across New Zealand. Amidst the cliched assumptions however, distribution is once again showing its strength, as a force to be listened to, rather than questioned. Traditionally, the role was born out of a need for vendors and resellers to find one another, acting as a bridge between the testing lab and the marketplace. Yet despite new technologies and business approaches shaking the channel to its very core, distributors remain tied to the epicentre - providing the voice of reason amidst a seismic industry shift. In looking across both sides of the vendor and partner fences, the middle concept of the three-tier chain remains centrally placed to understand the metrics of two differing worlds, as the continual pulse checkers of the local channel. This exclusive Reseller News Roundtable, in association with Dicker Data and rhipe, examined the pivotal role of distribution in understanding the health of the channel, educating from the epicentre as the market transforms at a rapid rate.

Educating from the epicentre - Why distributors are the pulse checkers of the channel
Kiwi channel reunites as After Hours kicks off 2017

Kiwi channel reunites as After Hours kicks off 2017

After Hours made a welcome return to the channel social calendar last night, with a bumper crowd of distributors, vendors and resellers descending on The Jefferson in Auckland to kickstart 2017. Photos by Maria Stefina.

Kiwi channel reunites as After Hours kicks off 2017
Arrow exclusively introduces Tenable Network Security to A/NZ channel

Arrow exclusively introduces Tenable Network Security to A/NZ channel

Arrow Electronics introduced Tenable Network Security to local resellers in Sydney last week, officially launching the distributor's latest security partnership across Australia and New Zealand. Representing the first direct distribution agreement locally for Tenable specifically, the deal sees Arrow deliver security solutions directly to mid-market and enterprise channel partners on both sides of the Tasman.

Arrow exclusively introduces Tenable Network Security to A/NZ channel
Show Comments