home.social

#antimalware — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #antimalware, aggregated by home.social.

  1. @MishaVelthuis : firstly, I am definitely not an AI expert.

    W.r.t. source code analysis: in fact one does not need "source code" (e.g. higher level languages) to be able to spot bugs. More or less like you wrote, in the end every computer program contains sequences of instructions for the targeted CPU (including calls to, possibly documented, operating system and other libraries).

    Reverse engineers love decompilers because assembler code is a lot harder to interpret *by humans* than higher level source code (it can be done, I did it approx. 30 - 40 years ago for various CPU architectures, but it is very time consuming and error-prone).

    Malware typically consist of (highly) obfuscated code to fool decompilers and emulators. I've not studied it but probably the anti-malware industry is already using AI to help them analyse malware (and, feeding the rat race, quite likely malware makers are using AI to obfuscate their code).

    Internet search terms such as "malware analysis llm" may possibly help you to find related articles.

    Regardless, IMO not possessing the original source code should not pose a major hurdle for finding bugs in executable code.

    #AI #ReverseEngineering #Malware #DeCompilers #IDA #DisAssemblers #Infosec #AntiMalware

  2. @MishaVelthuis : firstly, I am definitely not an AI expert.

    W.r.t. source code analysis: in fact one does not need "source code" (e.g. higher level languages) to be able to spot bugs. More or less like you wrote, in the end every computer program contains sequences of instructions for the targeted CPU (including calls to, possibly documented, operating system and other libraries).

    Reverse engineers love decompilers because assembler code is a lot harder to interpret *by humans* than higher level source code (it can be done, I did it approx. 30 - 40 years ago for various CPU architectures, but it is very time consuming and error-prone).

    Malware typically consist of (highly) obfuscated code to fool decompilers and emulators. I've not studied it but probably the anti-malware industry is already using AI to help them analyse malware (and, feeding the rat race, quite likely malware makers are using AI to obfuscate their code).

    Internet search terms such as "malware analysis llm" may possibly help you to find related articles.

    Regardless, IMO not possessing the original source code should not pose a major hurdle for finding bugs in executable code.

    #AI #ReverseEngineering #Malware #DeCompilers #IDA #DisAssemblers #Infosec #AntiMalware

  3. @MishaVelthuis : firstly, I am definitely not an AI expert.

    W.r.t. source code analysis: in fact one does not need "source code" (e.g. higher level languages) to be able to spot bugs. More or less like you wrote, in the end every computer program contains sequences of instructions for the targeted CPU (including calls to, possibly documented, operating system and other libraries).

    Reverse engineers love decompilers because assembler code is a lot harder to interpret *by humans* than higher level source code (it can be done, I did it approx. 30 - 40 years ago for various CPU architectures, but it is very time consuming and error-prone).

    Malware typically consist of (highly) obfuscated code to fool decompilers and emulators. I've not studied it but probably the anti-malware industry is already using AI to help them analyse malware (and, feeding the rat race, quite likely malware makers are using AI to obfuscate their code).

    Internet search terms such as "malware analysis llm" may possibly help you to find related articles.

    Regardless, IMO not possessing the original source code should not pose a major hurdle for finding bugs in executable code.

    #AI #ReverseEngineering #Malware #DeCompilers #IDA #DisAssemblers #Infosec #AntiMalware

  4. @MishaVelthuis : firstly, I am definitely not an AI expert.

    W.r.t. source code analysis: in fact one does not need "source code" (e.g. higher level languages) to be able to spot bugs. More or less like you wrote, in the end every computer program contains sequences of instructions for the targeted CPU (including calls to, possibly documented, operating system and other libraries).

    Reverse engineers love decompilers because assembler code is a lot harder to interpret *by humans* than higher level source code (it can be done, I did it approx. 30 - 40 years ago for various CPU architectures, but it is very time consuming and error-prone).

    Malware typically consist of (highly) obfuscated code to fool decompilers and emulators. I've not studied it but probably the anti-malware industry is already using AI to help them analyse malware (and, feeding the rat race, quite likely malware makers are using AI to obfuscate their code).

    Internet search terms such as "malware analysis llm" may possibly help you to find related articles.

    Regardless, IMO not possessing the original source code should not pose a major hurdle for finding bugs in executable code.

    #AI #ReverseEngineering #Malware #DeCompilers #IDA #DisAssemblers #Infosec #AntiMalware

  5. In 2025, the top 5 known exploited vulnerability (#KEV) vendors as of cyble.com/blog/cisa-kev-2025-e were:

    Microsoft (39)
    #Apple (9)
    #Cisco (8)
    #Fortinet (8)
    #Google #Chromium (7)

    If you like to minimize your #security risk here, avoiding those vendors could improve your overall exposure.

    As you can see, this is particularly true for #Microsoft.

    Mitigation using #AntiMalware or #EndPointProtection is not the answer as we've learned in the previous year where the "Most Frequently Exploited #Vulnerabilities" have been security products!
    Source: services.google.com/fh/files/m

    If you have high requirements for #ITsecurity, you need to migrate your systems to #Linux which is also part of KEV but on a *much* better level!

    #Windows #macOS #iOS #exploits

  6. In 2025, the top 5 known exploited vulnerability (#KEV) vendors as of cyble.com/blog/cisa-kev-2025-e were:

    Microsoft (39)
    #Apple (9)
    #Cisco (8)
    #Fortinet (8)
    #Google #Chromium (7)

    If you like to minimize your #security risk here, avoiding those vendors could improve your overall exposure.

    As you can see, this is particularly true for #Microsoft.

    Mitigation using #AntiMalware or #EndPointProtection is not the answer as we've learned in the previous year where the "Most Frequently Exploited #Vulnerabilities" have been security products!
    Source: services.google.com/fh/files/m

    If you have high requirements for #ITsecurity, you need to migrate your systems to #Linux which is also part of KEV but on a *much* better level!

    #Windows #macOS #iOS #exploits

  7. In 2025, the top 5 known exploited vulnerability (#KEV) vendors as of cyble.com/blog/cisa-kev-2025-e were:

    Microsoft (39)
    #Apple (9)
    #Cisco (8)
    #Fortinet (8)
    #Google #Chromium (7)

    If you like to minimize your #security risk here, avoiding those vendors could improve your overall exposure.

    As you can see, this is particularly true for #Microsoft.

    Mitigation using #AntiMalware or #EndPointProtection is not the answer as we've learned in the previous year where the "Most Frequently Exploited #Vulnerabilities" have been security products!
    Source: services.google.com/fh/files/m

    If you have high requirements for #ITsecurity, you need to migrate your systems to #Linux which is also part of KEV but on a *much* better level!

    #Windows #macOS #iOS #exploits

  8. In 2025, the top 5 known exploited vulnerability (#KEV) vendors as of cyble.com/blog/cisa-kev-2025-e were:

    Microsoft (39)
    #Apple (9)
    #Cisco (8)
    #Fortinet (8)
    #Google #Chromium (7)

    If you like to minimize your #security risk here, avoiding those vendors could improve your overall exposure.

    As you can see, this is particularly true for #Microsoft.

    Mitigation using #AntiMalware or #EndPointProtection is not the answer as we've learned in the previous year where the "Most Frequently Exploited #Vulnerabilities" have been security products!
    Source: services.google.com/fh/files/m

    If you have high requirements for #ITsecurity, you need to migrate your systems to #Linux which is also part of KEV but on a *much* better level!

    #Windows #macOS #iOS #exploits

  9. In 2025, the top 5 known exploited vulnerability (#KEV) vendors as of cyble.com/blog/cisa-kev-2025-e were:

    Microsoft (39)
    #Apple (9)
    #Cisco (8)
    #Fortinet (8)
    #Google #Chromium (7)

    If you like to minimize your #security risk here, avoiding those vendors could improve your overall exposure.

    As you can see, this is particularly true for #Microsoft.

    Mitigation using #AntiMalware or #EndPointProtection is not the answer as we've learned in the previous year where the "Most Frequently Exploited #Vulnerabilities" have been security products!
    Source: services.google.com/fh/files/m

    If you have high requirements for #ITsecurity, you need to migrate your systems to #Linux which is also part of KEV but on a *much* better level!

    #Windows #macOS #iOS #exploits

  10. CW: Kaspersky

    While I don't trust Kaspersky due to Russia, them doing antimalware for Linux is a good sign that maybe other software will start popping up again so there's more options than ClamAV and Bitdefender GravityZone for "servers" (they consider all Linux installs servers last I checked).

    #Kaspersky #Linux #antimalware

  11. CW: Kaspersky

    While I don't trust Kaspersky due to Russia, them doing antimalware for Linux is a good sign that maybe other software will start popping up again so there's more options than ClamAV and Bitdefender GravityZone for "servers" (they consider all Linux installs servers last I checked).

    #Kaspersky #Linux #antimalware

  12. CW: Kaspersky

    While I don't trust Kaspersky due to Russia, them doing antimalware for Linux is a good sign that maybe other software will start popping up again so there's more options than ClamAV and Bitdefender GravityZone for "servers" (they consider all Linux installs servers last I checked).

    #Kaspersky #Linux #antimalware

  13. CW: Kaspersky

    While I don't trust Kaspersky due to Russia, them doing antimalware for Linux is a good sign that maybe other software will start popping up again so there's more options than ClamAV and Bitdefender GravityZone for "servers" (they consider all Linux installs servers last I checked).

    #Kaspersky #Linux #antimalware

  14. Wait what??? Seriously???

    Cybersecurity company Avast profits from violating users privacy.

    They got caught and yet CEO Ondrej Vleck wants people to feel bad they have to shutdown their Jumpshot subsidiary?

    #avast #jumpshot #cybersecurity #antivirus #antimalware #privacy #malware #protection

  15. The Risks of AI for Detecting Threats - A Bit of Security for March 17, 2025
    What is the downside of relying on AI to detect threats? Listen to this -
    youtu.be/_0AdSztIT9Y
    #cybersecuritytips #attachsurface #antimalware #AIsecurity #threatdetection #BitofSec

  16. Monthly reminder that #Windows11 fucking sucks ass.

    Trying to troubleshoot why a software didn't start and Windows Defender false-positive a DLL that now can't restore.

    Great start for a monday.

    #Windows #Microsoft #Troubleshooting #WindowsDefender #Malware #AntiMalware #AntiVirus #AV

  17. Битва за внимание: как российские и зарубежные ИБ-медиа делят аудиторию в эпоху киберугроз

    Специализированные медиа в сфере информационной безопасности оказались в центре серьезных отраслевых изменений. Киберугрозы усложняются — в том числе за счет искусственного интеллекта — и тема становится всё актуальнее. Однако сам медиарынок развивается неравномерно. Меняются паттерны потребления информации, аудитория консолидируется, конкуренция между изданиями обостряется. На этом фоне профильные ИБ-ресурсы из узкоспециализированных площадок превратились в важные источники информации для широкой аудитории — от директоров по безопасности до рядовых пользователей. Чтобы понять, как распределяется внимание на этом рынке, мы сравнили ключевые метрики российских и западных изданий. В основе анализа — данные SimilarWeb (сентябрь 2025), рейтинг цитируемости "Медиалогии" и индекс ИКС от "Яндекса".

    habr.com/ru/articles/957454/

    #сми #сми_в_интернете #securitylab #xakepru #antimalware #информационная_безопасность #рейтинг_сми

  18. At my workplace, #Microsoft #Defender 365 aka the #antimalware from hell, has decided that duckdb.org is a malicious link.
    Every time someone tries to post it on Teams, it is blocked.
    I suggested that maybe we can trigger an integer overflow in the system after many alerts...

  19. Domanda per gli #informatici ovvero devo rinnovare l'abbonamento all'antimalware (a pagamento) e volevo qualche dritta da chi è del settore.

    Io sto usando F-Secure e mi trovo bene, però devo rinnovare per 1 dispositivo invece che per 3 come prima e non sono certo che si possa fare, per cui se dovessi cambiare, che consigliate?

    #MastoAiuto #Antimalware @filippodb @ildisinformatico

  20. Antimalware companies could make a lot of money if they would stop being cowards and start doing desktop Linux antimalware again for home users that don't want to go to Windows 11. ClamAV with fangfrisch definitions is ok but it can't scan big files because it's intended for mail servers.

    #antimalware #ClamAV #Linux #Windows11

  21. Does anyone have a good unbiased review / ranking of “best home endpoint security”/ anti malware?

    All the online reviews seem a bit tainted and get influenced by “functionality” suite. I’m not looking for a VPN, password manager and online storage.

    I just want anti malware.

    #CyberSecurity #infosec #antimalware #av

  22. @boblord you inspire me to request a long overdue edit to an intranet page that refers new users to external <trustedantiviruscompare.com/be>, where Editors Choice TotalAV is uppermost, and no other product or service has the "100% Free" badge.

    A poll, four choices: which one aspect is the worst?

    #security #antivirus #protection #antimalware

  23. 🔐 Cybersecurity Essentials: In this diagram, we help you understand the key cybersecurity approaches needed for resilience.

    At RELIANOID, we support organizations by monitoring and securing all these layers in a dynamic threat landscape. 🛡️

  24. #CISA boss: Makers of insecure #software are the real cyber villains
    theregister.com/2024/09/20/cis

    "Even calling #security holes "software #vulnerabilities" is too lenient, she added. This phrase "really diffuses responsibility. We should call them 'product defects'"

    ... yes! It's about time that we do not spin security issues so that only the bad guys who exploit the insecure solutions are the main problem.

    #cybersecurity #spin #infrastructure #antimalware #snakeoil

  25. Remember how #Microsoft complained after the #CrowdStrike fiasco how they've been forced by the EU to open up for 3rd party anti-malware to use advanced interfaces?

    Well, guess what MS now did with their #Office applications on #macOS? Right: they bypassed the operating system’s permission model. 😈

    Source: blog.talosintelligence.com/how

    #security #malware #antimalware

  26. Una "Idea loca" del año 2018-19 es ahora un servicio de seguridad que está disponible en "Tu Latch". Os lo cuento en -> Tu Latch "Navegación Segura". Codename: "Second Factor Web Browsing (2FWB)" elladodelmal.com/2024/07/tu-la #antiphishing #antimalware #hardening #Protección #Latch

  27. Quick vent about the #CrowdStrike #Falcon thing.

    My day job is to maintain a commercially available #Linux OS. Among my responsibilities are package management and security, including escalation of customer support tickets.

    #Antimalware tools on Linux are a mixed bag. Many of them instrument the OS kernel by intercepting code to do their analysis functions. These tools regularly run into conflicts with work that we do, and customers come to us complaining when it happens.

    Occasionally something like what happened today occurs, bringing servers down and requiring recovery actions. Fortunately Linux provides much more robust tools for recovering from situations like this than Windows, but it's still a pain in the ass.

    What I've learned from all of those interactions is that the IT industry has become lazy where it comes to security. Companies don't hire enough #infosec people to keep systems secure; they just put blind faith in third-party products. And it shows.

    I regularly see customers come to us with systems that have not been patched in five or more years (last month, I saw one that hasn't been patched in 12). These tickets are usually from system administrators who know very little about security, and rely on the tools to take care of that for them.

    I don't want to give any of you nightmares, but let's just say that if you don't already work in that part of the industry, you don't want to see behind the curtain.

    Do better, IT industry. Stop playing "set it and forget it," and start being active custodians. The world depends on it now.

    (p.s. I don't begrudge tools like this existing. They can be useful! But watch the tools carefully, and holy hell DO NOT TRUST THEM AS YOUR ONLY LINE OF DEFENSE. If you don't have *people* watching over your system security, it's only a matter of time before you're screwed.)

  28. When #antimalware products are the #malware:

    FTC to ban #Avast from selling browsing data for advertising purposes
    bleepingcomputer.com/news/secu

    Edit: just to be clear: most anti-malware products deployed major security issues like open backdoors on many Millions of computers in the past. It's a #snakeoil business where users pay for a false feeling of security and tend to take higher risks. Almost all companies that got #ransomware had anti-malware in place.

    #privacy #antivirus #AvastAntivirus

  29. The Risks of AI for Detecting Threats - A Bit of Security for March 17, 2025
    What is the downside of relying on AI to detect threats? Listen to this -
    youtu.be/_0AdSztIT9Y
    #cybersecuritytips #attachsurface #antimalware #AIsecurity #threatdetection #BitofSec

  30. The Risks of AI for Detecting Threats - A Bit of Security for March 17, 2025
    What is the downside of relying on AI to detect threats? Listen to this -
    youtu.be/_0AdSztIT9Y
    #cybersecuritytips #attachsurface #antimalware #AIsecurity #threatdetection #BitofSec