Auto-Detecting Malware? It's Possible

Posted by timothy on Wednesday September 30, 2009 @07:18AM from the would-love-to-see-the-install-prompt-for-this dept.

itwbennett writes "If antivirus protectors could collect data from machines and users, including geographic location, social networking information, type of operating system, installed programs and configurations, 'it would enable them to quickly identify new malware strains without even looking at the code,' says Dr. Markus Jakobsson. In a recent article, he outlines some examples of how this could work. The bottom line is this: 'Let's ignore what the malware does on a machine, and instead look at how it moves between machines. That is much easier to assess. And the moment malware gives up what allows us to detect it, it also stops being a threat.'"

2 of 178 comments (clear)

Min score:

Reason:

Sort:

I have a better idea by Mr.+Firewall · 2009-09-30 07:31 · Score: 0, Flamebait

Let's NOT ignore the fact that malware basically only infects Windows, and instead look at how we can kick Windows systems off of the Internet. That is much easier to do. And the moment malware formats the hard drive of a Windows system and installs 'nix in its place, it also stops being a threat
Okay to say, "There, fixed that"?

--
In times of universal deceit, telling the truth gets you modded -1 Troll
Re:Malware vulnerability is profitable for Microso by Dog-Cow · 2009-09-30 08:02 · Score: 0, Flamebait

That won't stop malware. You are truly an idiot.