Slashdot Mirror

← Back to Stories (view on slashdot.org)

Software Security Suffers as Startups Lose Access To Google's Virus Data

Posted by msmash on from the the-talk-of-the-town dept.

Iain Thomson, writing for The Register: Security firms that use the Google-owned VirusTotal malware database but don't contribute to the silo are going to find themselves out on a limb. For the past 12 years, researchers have been feeding samples of software nasties into VirusTotal, allowing antivirus engines to check they can detect malicious code. But the site has seen an increasing number of security startups have been using the VirusTotal data without giving back. Now Google, and other contributors have had enough and have changed the terms and conditions of the website. Put simply, if you don't share samples, you can find your own malware elsewhere.From a Reuters report: The policy change at the information-sharing pioneer VirusTotal takes aim mainly at a new generation of security companies, some with valuations of $1 billion or more, that haven't been contributing their analysis. Older companies, some with market valuations much smaller than the upstart rivals, had pressed for the shift. "If they no longer have access to VirusTotal, their detection scores will drop," said Andreas Marx, chief executive of security software evaluation firm AV-TEST. With detection rates down, hackers will find easier entry.

74 comments

  1. Strange by Anonymous Coward · · Score: 0

    Some of us share and share and share and share and share and get no recognition for it.

    Then the people who don't share, get told they have to share and get immediate recognition if they do.

    That makes no sense.

    1. Re:Strange by __aaclcg7560 · · Score: 1

      It's called being a servant. If you want recognition, you need to promote yourself.

    2. Re:Strange by Anonymous Coward · · Score: 0

      Whine some more why don't you. If you wanted recognition, you wouldn't be posting as an Anonymous Coward.

    3. Re: Strange by Anonymous Coward · · Score: 0

      Trump supporter detected!

  2. Contribute back or you can't use our stuff by Anonymous Coward · · Score: 1

    Sounds like the GPL dialed up a notch. Aren't the big guys always pushing the BSD licenses? Do as I say, not as I do, hmmm?

  3. It's how Open Data works by cweber · · Score: 3, Insightful

    You cannot just consume and hope nobody cares that you don't give back.

    1. Re:It's how Open Data works by smooth+wombat · · Score: 1

      No, it's how the world works. You cannot just consume and hope nobody cares you're not paying for a product such as music or movies.

      --
      We will bankrupt ourselves in the vain search for absolute security. -- Dwight D. Eisenhower
    2. Re:It's how Open Data works by Anonymous Coward · · Score: 5, Insightful

      No. That's specifically NOT how Open Data works.

      Open Data is data that's made available, no strings attached, for public use and consumption. There are many reasons why someone would choose to share data in this way. Maybe it's for research. Maybe it's for third-party app developers (e.g. a municipality making transit data available). Maybe it's because they're required to provide the data by law (e.g. government datasets).

      If the data is available only conditionally, then it's not Open Data. It might be data the public can potentially access, but that's not Open Data.

      If (for example) Linux was ONLY available to people who actively contributed code back to the kernel, and blocked for everyone else, we wouldn't be calling it OSS.

    3. Re:It's how Open Data works by pr0nbot · · Score: 1

      I suppose it's like GPL vs BSD.

    4. Re:It's how Open Data works by Anonymous Coward · · Score: 0

      Nice troll, but we both know it is nothing like that.

      4/10 for making me reply.

    5. Re: It's how Open Data works by getuid() · · Score: 3, Informative

      We're not. We're calling it Free Software.

    6. Re:It's how Open Data works by Anonymous Coward · · Score: 0

      You cannot just consume and hope nobody cares that you don't give back.

      Think of them as movies or songs you want to watch or listen to without paying for.

      Who does it hurt to make another copy?

    7. Re: It's how Open Data works by Anonymous Coward · · Score: 0

      Agree. Well at least the owners of VirusTotal isn't a company with a mission statement to "organize the worldâ(TM)s information and make it universally accessible and useful".

      Oh wait.

    8. Re:It's how Open Data works by meerling · · Score: 3, Insightful

      The idea of a system like the one in the article is that everyone contributes, everyone benefits. They didn't think to write it in their rules because they didn't contemplate the possibility of the extensive leeching for profit that's going on. They are now correcting their posted rules to get the for-profit-leeches to participate or GTFO.

    9. Re:It's how Open Data works by CAIMLAS · · Score: 2

      I think the point here isn't that they're using it and not providing anything back, it's that they're using 'open' technologies without improving them, and getting insane market evaluations for what amounts to marketing bullshit.

      It'd like be re-theming RedHat and selling it with a Windows-like or MacOS-like theme, saying it's "Windows and Mac compatible Linux" or some such.

      --
      ~/ssh slashdot.org ssh: connect to host slashdot.org port 22: too many beers
    10. Re:It's how Open Data works by wardrich86 · · Score: 1

      PLS SEED

    11. Re: It's how Open Data works by Anonymous Coward · · Score: 0

      or, Free and Open Source Software... what are you on?

    12. Re:It's how Open Data works by Immerman · · Score: 1, Interesting

      Seems like a pretty apt analogy to me. They were in BSD mode - give everything away with few (no?) strings attached. Then high-revenue parasites began to exploit the gift to the point that the givers could no longer compete effectively. So they switched to a sharealike license that requires downstream distros to contribute their own assets if they want to integrate the collective assets.

      Of course the analogy breaks down since we're talking about a data collection used for pattern recognition, rather than source code, but every analogy breaks down if you look at it too closely, that's why it's called an "analogy" rather than "literal truth".

      --
      --- Most topics have many sides worth arguing, allow me to take one opposite you.
    13. Re:It's how Open Data works by Gnomaana · · Score: 1

      I wish I had points to mod you up just for the analogy sentence. I HATE when you make a valid analogy and people pick at it because it isn't 100% accurate. If the analogy was 100% accurate, it wouldn't be an analogy. It would BE the original thing/topic/whatever.

    14. Re: It's how Open Data works by Anonymous Coward · · Score: 0

      That's like saying if a model train were 100% the size of the prototype, then it would be a real train.

    15. Re: It's how Open Data works by Anonymous Coward · · Score: 0

      Just because it's the size of the real thing doesn't make it the same as the real thing, you idiot.

    16. Re: It's how Open Data works by Anonymous Coward · · Score: 0

      Wow, you really don't get stuff very well, do you? What if the prototype was _a full size model of a train_?

    17. Re:It's how Open Data works by Anonymous Coward · · Score: 0

      No. That's specifically NOT how Open Data works.

      Open Data is data that's made available, no strings attached, for public use and consumption. There are many reasons why someone would choose to share data in this way. Maybe it's for research. Maybe it's for third-party app developers (e.g. a municipality making transit data available). Maybe it's because they're required to provide the data by law (e.g. government datasets).

      If the data is available only conditionally, then it's not Open Data. It might be data the public can potentially access, but that's not Open Data.

      If (for example) Linux was ONLY available to people who actively contributed code back to the kernel, and blocked for everyone else, we wouldn't be calling it OSS.

      Where'd you come up with that nonsense? Pretty sure you did not get that half-smart statement from VT's terms and conditions. Ever heard of T's and C's, there half-smart? Those paragraphs of big words people like you just scroll to the end and click "I agree" before you can download every single open source or "freeware" anything. Take the time to read any of them once and you will see they all have language exactly opposite of what you've so confidently shouted down at the OP, you'll find language prohibiting its use for profit, personally or commercially.

      Don't feel bad, half-smart, you're thinking exactly like you've been bred to think. Sadly, half-smart here represents the majority these days, people living in their own echo chambers so confused they violently maintain their smug personal opinion even when faced with irrefutable fact.

      Sadly, this is a much more broad and deep problem than half-smart's simple confusion. The information age, more specifically, the internet had the promise to provide everyone with easy access to information and serve as a platform for free speech on a global scale. However, it has played out like every other advancement with the promise to expand free speech and knowledge prior to the invention of the printing press. Shortly after widespread adoption of the advancement, these tools with the promise of truth and democracy are consistently co-opted by self-interest and greed.

      This is not a perverse side effect, it's the natural course. At its core, self-interest is motivated by greed and/or desire for power which can take many forms. Self-interest is an active force that develops and delivers a co-opted version of truth and reality using primarily some form of fear to capture interest among the susceptible. No action beyond listening is required.

      In contrast, "actual" truth is inactive, it has no means of self promotion and precious few out there have any reason to do so. The pursuit of truth and knowledge can lead to power and wealth, it just takes a lot more effort and is much less common. Likely the reason curiosity, the innate drive to learn, is very hard to find in the general population today. Replaced by lazy, smug opinions bitterly passed off as "thought" ala half smart's vitriolic blather that started this rant.

      Keep up the good work, half smart, you're a credit, er, product of this society, produced and "thinking" exactly as designed.

    18. Re: It's how Open Data works by Anonymous Coward · · Score: 0

      even freeware has T's and C's that prohibit its use for personal or commercial gain. I thought that was common knowledge. I suspect many will make sealed deals with Google granting them licensing to continue to use the service as they always have been.

    19. Re: It's how Open Data works by Anonymous Coward · · Score: 0

      Look guy. No amount of analogy or argument is going to change the fact you have a tiny dick. There will be no trains for you, real or prototype, EVAR.

    20. Re:It's how Open Data works by ultranova · · Score: 1

      No, it's how the world works. You cannot just consume and hope nobody cares you're not paying for a product such as music or movies.

      There's a difference between watching a movie and running a movie theater which competes with the producers of the film. A rather important difference, one might say.

      --

      Forget magic. Any technology distinguishable from divine power is insufficiently advanced.

    21. Re: It's how Open Data works by Immerman · · Score: 1

      Then it would be a life size model rather than a scale model, still not an actual train. Models, by their nature, are not the real thing. Typically they're non-functional, or only have very limited functionality to test/demonstrate one or more aspects (though then you're starting to get into prototype territory) . If you build a fully functional model, it's no longer a model - it's the real thing.

      --
      --- Most topics have many sides worth arguing, allow me to take one opposite you.
  4. How many times do we need to say it? by xxxJonBoyxxx · · Score: 4, Insightful

    Don't build your "startup" on other people's data/API/etc. unless you have a contract. They could change the terms tomorrow and then you're screwed.

    1. Re:How many times do we need to say it? by Anonymous Coward · · Score: 1

      Oh, and "when a service is based 100% on data contributions in order to function, don't expect your business model of 100% consume/0% contribute to be very sustainable"

      Really, these firms are leeches. They built a business out of nothing more than capitalizing on Virustotal, They can die and no one will miss them.

    2. Re:How many times do we need to say it? by Actually,+I+do+RTFA · · Score: 1

      They could change the terms tomorrow and then you're funded at a high valuation.

      Fixed that for you. It makes sense that a startup would use other people's data to up their valuation. If they need to replace it later, at least they'll have more cash/equity to do so with.

      Now, investors should price that into the valuation, but they don't seem to.

      --
      Your ad here. Ask me how!
    3. Re:How many times do we need to say it? by Anonymous Coward · · Score: 0

      Even if you have contract, you still will be screwed. Look at Dataminr.

    4. Re:How many times do we need to say it? by Anonymous Coward · · Score: 0

      Why would a start-up give a shit? The founder just hope to make it far enough to be able to sell the company.

    5. Re:How many times do we need to say it? by Anonymous Coward · · Score: 0

      Even with a contract they can change the terms tomorrow. It's called efficient breach.

    6. Re:How many times do we need to say it? by tnk1 · · Score: 2

      Really, these firms are leeches. They built a business out of nothing more than capitalizing on Virustotal, They can die and no one will miss them.

      I don't disagree with the thought behind that, but even with wild inflation of value that is common these days, a company with a billion dollars of valuation is going to be missed when their customers end up with a crappier product, but no one mentioned to the already-sold customers that their provider is now sucking it because they have less ability to detect malware.

      These companies will likely have to scramble to either contribute or find their own way of getting data, but you can bet that they will not call their customers and state that they are suddenly unable to detect as much as they used to.

      In the end, this will fuck over customers who probably had no idea that their vendor was leeching. That could have a real effect on security in general, and making people less secure globally can have indirect effects on everyone else.

      Hopefully, these companies do start contributing. Presumably they have the money to run a few honeypots and some security admins to watch them if they have a billion dollar valuation. If they don't... well they won't be the only ones who are paying for it.

    7. Re:How many times do we need to say it? by Motherfucking+Shit · · Score: 1

      Especially when that third party is Google. Speaking of which, since when did Google own VirusTotal?

      --
      "BSD: Free as in speech. Linux: Free as in beer. Windows 10: Free as in herpes." --Man On Pink Corner in #52607549.
    8. Re:How many times do we need to say it? by Actually,+I+do+RTFA · · Score: 1

      I'm pretty creeped out Google owns VirusTotal. Not that they bought it, that's fine^W an example of the epidemic of Google consolidating the internet in a distinctly evil way. That they did, and I didn't know it.

      --
      Your ad here. Ask me how!
    9. Re:How many times do we need to say it? by ultranova · · Score: 1

      a company with a billion dollars of valuation is going to be missed

      A company with a billion dollars of valuation and a product that's another company's repainted product is a scam, plain and simple. Good riddance.

      --

      Forget magic. Any technology distinguishable from divine power is insufficiently advanced.

  5. Detection rates go down, products stop being used by QuietLagoon · · Score: 5, Insightful

    ... "If they no longer have access to VirusTotal, their detection scores will drop," said Andreas Marx, chief executive of security software evaluation firm AV-TEST. With detection rates down, hackers will find easier entry....

    The people who use the products with the poorer detection rates should just switch to products that continue to provide good detection rates, and the hackers will then find entry to be more difficult.

    .
    If those a/v companies built a ~$1B business based upon the acquisition of free data for which they have no long-term contract to obtain, then those companies do not deserve to continue to be in business.

    To put that much money at risk because the supply chain has not been properly vetted is not a good business practice.

  6. Re:Detection rates go down, products stop being us by Anonymous Coward · · Score: 0

    What risk? They took someone else's work, added marketing and a price tag. It's pure profit until they get cut off, and then they file for bankruptcy and move to Panama where they can live like kings for the next three generations on that pile of cash.

  7. loose analogy by supernova87a · · Score: 1

    A few years ago, when there was a US hops shortage, Samuel Adams (the big beer brewing company) made the gesture of selling significant amounts of its hops stock at cost to small craft brewers, to help keep the industry afloat. This helped a significant number of small businesses stay alive and the talent in those companies make a living until the shortage was over.

    Given that the malware detection software companies are more like pure competitors to Google, and that software engineers generally are never out of work for a long time, plus that they are generally unlikely to be "grateful" to Google for its charity, I think Google and the database contributors generally aren't expected to give the freeloaders anything.

  8. Detection already negligible by sinij · · Score: 4, Insightful

    Signature-based AV is already ineffective to the point of being useless. Trivial obfuscation techniques can and does fool every solution out there.

    1. Re:Detection already negligible by Anonymous Coward · · Score: 0

      This has been the truth since forever. I knew people in high school (late 80s) who would flip a byte or two and get past the virus scanners.

      To me it looks like the plethora of virus scanners out there were little more than wrappers upon the VirusTotal DB. Then they are turning around claiming they were better than the ones actually putting data into the DB. Google did the right thing here. They shut down the charlatans. They do this sort of thing all the time. They seem to be the only company out there trying to make the internet a better place.

    2. Re:Detection already negligible by Anonymous Coward · · Score: 0

      also the also positive rate is up so high now that virus scanners now 'find' multiple viruses on my computer (I checked and they were false positives).

    3. Re:Detection already negligible by Anonymous Coward · · Score: 0

      visionary. Thanks for blowing my mind. Did you get an A+ degree from University of Phoenix?

  9. Re:Freeloaders? by Dog-Cow · · Score: 1

    You don't seem to understand logic.

    Let's accept the unstated axiom that those who willfully download pirated media are largely the same group who has no problem with Google doing this. That is still not hypocritical, because even those who download such media acknowledge that the producers have a right to prevent it.

  10. Re:Detection rates go down, products stop being us by sinij · · Score: 1

    This might go sideways in more ways than VirusTotal realize. For example, consumers might realize that all end-point AV products are highly ineffective and stop buying them.

  11. Re:Detection rates go down, products stop being us by Anonymous Coward · · Score: 0

    What risk? They took someone else's work, added marketing and a price tag. It's pure profit until they get cut off, and then they file for bankruptcy and move to Panama where they can live like kings for the next three generations on that pile of cash.

    Is this not the way open source and free software works too? A company, say RedHat Inc., takes freely available software, say the Linux kernel, some GNU tools, and assorted other software, and then adds some of their own "secret sauce" proprietary software to charge their customers annual hefty support contract fees.

  12. Re:Detection rates go down, products stop being us by mysidia · · Score: 1

    Yes..... Also; I do think I am going to immediately cease submitting the hundreds of undetected malware samples I get a month to VirusTotal, and look for another venue that is truly open.

    It feels to me like this move is totally disingenuous on the part of VirusTotal cutting off their nose to spite their face / intended to harm players in the industry to the benefit of some companies more than others..... The motivation is obviously greed by companies losing some market share who influence VirusTotals' operation.

    I would point out that VT concealing their data is detrimental to companies that consider purchasing security products; it erodes vendor trust from the market, which affects everyone, And it reduces malware detection rates for everyone, which can only hurt the public and society at large.

  13. Re:Freeloaders? by wkwilley2 · · Score: 1

    This maybe so, but we're not turning around and trying to make mad money off said movie. Most of us anyway.

    --
    Have you ever fallen asleep at the keybhanusdiog?
  14. Re:Freeloaders? by zlives · · Score: 1

    this is /. please stop making sense and include musk/disrouption at least twice per line.

  15. So which companies loose access? by Anonymous Coward · · Score: 0

    That crucial piece of information has unfortunately been omitted.

  16. Re:Detection rates go down, products stop being us by thegarbz · · Score: 1

    If those a/v companies built a ~$1B business based upon the acquisition of free data for which they have no long-term contract to obtain, then those companies do not deserve to continue to be in business.

    I'm interested to know what you think a $1B business actually means?

    Remember that $1.8B business called twitter? Did you know that business never made a profit? In fact the same quarter it was valued at $1.8B they made a net loss of $23M.

    A valuation is something someone thinks about you, and in the tech industry that is completely devoid of any resemblance of reality. Unfortunately those same unicorn farts that power the valuations can't be used to pay your suppliers. Good business practice really doesn't come into startups because that requires something completely different: money.

  17. It's not just one company that does this by Anonymous Coward · · Score: 0

    You build startups on VC money and over-caffeinated bullshit. You know, fancy slides full of buzzword and graphs of projected future earnings^Wusers going to the moon. "Build it and they will come." And all that.

    Not owning the core ingredients that make your business tick? It's outsourcing, baby. It's all on someone else's servers? It's the cloud, baby. Both at the same time? Buzzgasm, oh yeah baby. That's the stuff "startups" are made out of. VC money and over-caffeinated bullshit.

  18. Re:Detection rates go down, products stop being us by yodleboy · · Score: 2

    why should these new companies be allowed to continue to use VirusTotal without giving back anything? The companies that do contribute have a cost associated with doing so, but they ALL benefit by contributing in good faith to the same pool. No one is saying these new companies have to lose access, they just won't be allowed to continue leeching the work of others for their own profit. Sounds like the greedy ones are not the contributors...

  19. Re:Detection rates go down, products stop being us by Solandri · · Score: 1

    If those a/v companies built a ~$1B business based upon the acquisition of free data for which they have no long-term contract to obtain, then those companies do not deserve to continue to be in business.

    I'd be more worried about the programmer who thinks of a clever new way to detect viruses while in the shower, but can't easily test how effective it is because there's no large public database of viruses. He can't afford the time or several tens of thousands of dollars to get a dataset just to test out a hunch, so the idea dies on the vine instead of being developed.

    As you allude, ideally they'd restrict access for companies with large revenue while keeping it free for the little guy. But the problem with giving stuff away for free is you're not collecting enough info to distinguish the big guy from the little guy.

  20. Re:Detection rates go down, products stop being us by swb · · Score: 2

    I'd love to hear a "explain it to me like I was 5" accounting-focused explanation of how a business like Twitter manages to lose money and still pay the bills.

    Conceptually it makes sense when a business has been around for some time and had profitable years and then has a year where they lose money -- they might have cash reserves or access to credit to make up the shortfall.

    But a shorter-lived business like Twatter that's maybe never made a profit -- they don't have a savings account with reserves built up from previous years' profit because they've never had it.

    How does that work? People are willing to loan them the money because of their high valuation? The corporation holds some of its own stock and sells it to provide cash? It's all funny accounting math, and their "losses" aren't actually negative cash balances but a bunch of accounting gobbledygook that "add up" to a loss, but they're actually slightly better than break even in cash flow?

  21. Re:Detection rates go down, products stop being us by Shimbo · · Score: 1

    I would point out that VT concealing their data is detrimental to companies that consider purchasing security products; it erodes vendor trust from the market, which affects everyone, And it reduces malware detection rates for everyone, which can only hurt the public and society at large.

    That assumes that none of the freeloaders changes their business model and decides to contribute back. It only takes one firm to decide to do so to make the net result improved malware detection for most people.

  22. Re:Detection rates go down, products stop being us by tnk1 · · Score: 1

    You're assuming that the end user will correlate their detection rate with this sort of thing. If they didn't happen to read this story, they might continue on blissfully unaware that their vendor now suddenly sucks. You can be sure the vendor won't say a damn thing about it, unless prompted by the customers first.

  23. Re:Detection rates go down, products stop being us by tnk1 · · Score: 2

    One wonders though. Why was VT set up? Was it made open to make it possible for more and more security vendors to get good data in order to increase global security? If so, then the failure to give back is a problem, but as long as that data is used, the goal of the project is satisfied. More security.

    What is happening is that there appears to be some who are able to leech. Well... to some degree, that is merely an extreme use case of what VT was intended for. Even if they don't give back, they are improving global detection of malware to the collective benefit of everyone.

    As for the competition... here is my question. Why is it that these "old school" contributors don't have the billion dollar valuations? Clearly, they've been doing this longer and they have experience. I can understand why they wouldn't want to feed their competitors who aren't sharing with them, but if this had been meant to be a security cartel to begin with, the rules would have started that way. To me, it is clear that these leechers are better at something than the sharers, either technically, or in marketing, or whatever. Admittedly, they're hitching a free ride, but couldn't it be argued that VT was basically set up to encourage the growth of good detection and these companies are pushing that forward?

    I'm not totally defending these leechers. Without contributions, the database isn't going to go anywhere, and if the leechers put the contributors out of business, then not only is there no reason to contribute, but the leeches will end up killing themselves by out-competing those who actually make it possible for them to detect viruses and malware.

    So for all the reasons above, I agree that a common sense contribution policy or at least a subscription rate for the data should be implemented which could be used to compensate contributors and Google for their efforts.

    However, rather than slam the leeches for leeching, I think leeches should be *encouraged* until it gets to the point where they no longer need the help to get off the ground, and then they should either contribute, or alternately, pay for their data. We want to get new companies off the ground to add global security capacity and expertise. We just don't want the leeches to be parasites who kill the host in the process.

  24. Google facilitating hackers? by khz6955 · · Score: 1

    "On Wednesday, the 12-year-old service quietly said it would cut off unlimited ratings access to companies that do not share their own evaluations of submitted samples" ref

    By not sharing their own evaluations these companies are also facilitating the hackers, are they not. Does software evaluation firm AV-TEST contribute their own evaluations to VirusTotal?

  25. Detection Rates will only go down for the leeches by Anonymous Coward · · Score: 0

    "With detection rates down, hackers will find easier entry."

    On the other hand, if these self-serving leeches would give back anything they learn themselves to the project - detection rates across the board will be UP.

    Besides, detection rates won't go down -that- far. As soon as people start noticing their AV of choice has become a piece of shit at actually doing it's job, they'll move to a competitor - likely one that isn't being a leech, at which point their own detection rate won't drop at all.

    The only thing that's really going to drop is the market share of those leeches.

  26. CrowdStrike by geek · · Score: 1

    CrowdStrike has been all over my local ISSA the last year pimping their crapware. This is pretty ironic considering VirusTotal is a Google service and CrowdStrike has been selling themselves on the fact Google gave them 100 million in capital.

  27. Re:Detection rates go down, products stop being us by farble1670 · · Score: 1

    The motivation is obviously greed

    Um, what? Asking / requiring people to contribute and share is now considered greed?

  28. Re:Detection rates go down, products stop being us by Immerman · · Score: 2

    Except that's a horrible comparison since, as I recall, Red Hat is actually one of the single largest contributors to the Linux kernel, etc.. They do give back, and dramatically so, they just *also* include a lot of "value added" software and support to make their distro more attractive than the competition. If you don't want to pay for the value added stuff, then I believe CentOS is still offering the core Red Hat distro sans "secret sauce".

    --
    --- Most topics have many sides worth arguing, allow me to take one opposite you.
  29. Re:Detection rates go down, products stop being us by thegarbz · · Score: 1

    How does that work? People are willing to loan them the money because of their high valuation?

    Exactly. Cashed up VCs chasing unicorns with the hope of a part of the pie of a multi-billion dollar IPO. What wallstreet maketh silicon valley vapourises into the ether.

  30. Can't affect this: It stops malware cold by Anonymous Coward · · Score: 0

    See subject & before it can get you blocking sources of it APK Hosts File Engine 9.0++ SR-4 32/64-bit http://www.bing.com/search?q=%...

    Less power/cpu/ram + IO use vs. DNS/routers/antivirus + less security issues/complexity. Compliments firewalls (w/ layered drivers blocking less used IP addys vs. hosts blocking more used domains) & DNS (lighten dns load). Gets data via 10 security sites.

    Ads rob bandwidth/speed paid for, security (openbid adnetworks abuse), privacy in tracking + anonymity.

    Hosts add speed (hardcodes/adblocks), security (bad sites/poisoned dns), reliability (dns down), & anonymity (dns requestlogtrackers) natively. Hosts != blockable by ClarityRay (like. souled-out to admen inferior wasteful redundant slower usermode browser addons)

    Works vs. caps & HTTP PUSH ads w/ firewalls.

    APK

    P.S. - Safe https://www.virustotal.com/en/... (Verified by Malwarebytes' S. Burn "I've seen the code & yes it is safe" http://forum.hosts-file.net/vi... )

  31. Re:Detection rates go down, products stop being us by swb · · Score: 1

    And I get that with VCs and startups before they go public, and the spend money to make money concept. I've been around too many under-capitalized businesses and totally get the idea of losing money building up a foundation for future growth.

    But Twitter as an example already has done an IPO and in theory is past the point at which VCs sink money in -- the stock is already issued.

    I'm guessing at Twitter's scale the idea that they are losing money is mostly nominal, and that the business isn't absolute, negative cash flow and that substantial portions of their losses are paper losses, with the real portion of the loss something they can kick down the road a fair number of times before it becomes a meaningful problem -- you issue bonds, collect the cash, and then issue new bonds to pay off the old bonds and collect the extra cash, ad nauseum until you've taken on so much debt it just collapses.

  32. Re:Detection rates go down, products stop being us by mysidia · · Score: 1

    why should these new companies be allowed to continue to use VirusTotal without giving back anything? The companies that do contribute have a cost associated with doing so

    The problem is they mean something very specific by "Giving back"; They have to adapt their scanner, so their scanner is one of the scanners that VirusTotal checks samples against. And VirusTotal in their own words admits why this is not applicable to all scanners..... VirusTotal's antivirus engines are commandline versions, so depending on the product, they will not behave exactly the same as the desktop versions: for instance, desktop solutions may use techniques based on behavioural analysis and count with personal firewalls that may decrease entry points and mitigate propagation, etc.

    The cost is negligible if their tool is scanner that analyzes a file statically, and Non-negligible for startups whose security tool is not a file-based scanner.

    They mention techniques based on behavioral analysis, BUT some of the important tools are based almost SOLELY on behavioral analysis or techniques which cannot be incorporated into an offline scanner integration.

    So VT's requirement may be unreasonable.

  33. Re:Detection rates go down, products stop being us by mysidia · · Score: 1

    Asking people to contribute back would not be greed, But (1) That's not what they are asking, And (2) I am implying an ulterior motive driven by other companies who have a reason for pursuing this which is not what it is stated.

    If an antimalware vendor has not integrated their tool into VT, because their methodology doesn't lend itself to a program that "scans a specific file", then VT provides them no chance of participating.

    It's not like VT offers them a chance to pay for it or make a donation, or contribute their research..... if the vendor doesn't make their tool one of the scanning engines that VT uses, then they can no longer get the data or participate.

    So it's extremely disingenuous to say they are "freeloaders" or unwilling to contribute security research back, since that's not the criteria VT is requiring, appparently

  34. Re:Detection rates go down, products stop being us by Anonymous Coward · · Score: 0

    there's no trust in this market due to these leeches. And BTW, this is the proper way to spell "leeches". And I'm sure you're hundreds of submissions / month will bring the industry to its collective knees. Grow some humility, ass hat.