Symantec, Kaspersky Criticized for Cloaking Software

PAGE 2

ersion 5 of its Kaspersky Anti-Virus software, first released about a year ago, the company used cloaking techniques to hide "checksum" information that the software used to determine which files on the computer it had or had not scanned.

The Moscow-based security vendor uses the technique to improve the performance of its software, said Emm, who does not believe that Kaspersky’s software poses a security risk. "There’s no vulnerability," he said. "There’s no way in which the technology that we’re implementing can be used by an attacker to actually abuse what we’re doing and cause harm on the user’s system."

While Russinovich agreed that the Symantec and Kaspersky cloaking techniques are not as dangerous as Sony’s, which was ultimately exploited by virus writers, he said that all three vendors were engaging in a practice that was bad for users and IT professionals. "You don’t want IT not knowing what’s on the systems," he said. "Not being able to go to the system to do software inventory and disk space inventory, that’s just not a good idea."

--Robert McMillan, IDG News Service

« previous page | 1 | 2

Comments

More from IT Drilldown « Back to Applications

Articles

Intel: Don't Look for One Device to Do it All

Top 5 Chrome OS Myths Debunked

GSMA Show Promotes Apps, Android and Green Energy

Microsoft's IE9 to Tap Hardware for Speed Boost

Gartner Lays Out Top 10 Strategic Technologies

CIOs Talk Google Apps Migration

Microsoft Launches Beta Tests of Free Office 2010, 'Streaming' Delivery

Two Approaches to NFC Battle for French Hearts and Mobiles

Enterprise Newsletter

Applications MarketSpace

Practical Approaches for Securing Web Applications

Enterprises understand the importance of securing web applications to protect critical corporate and customer data. What many don't understand, is how to implement a robust process for integrating security and risk management throughout the web application software development lifecycle. Learn more »

Smart techniques for application security: whitebox + blackbox security testing.

An Executive's Guide to Web Application Security

Since so many Web sites contain vulnerabilities, hackers can leverage a relatively simple exploit to gain access to a wealth of sensitive information, such as credit card data, social security numbers and health records. It's more important than ever to examine your Web application security, assess your vulnerability and take action to protect your business. Learn more »

Web Application Vulnerabilities

Security managers may work for midsize or large organizations; they may operate from anywhere on the globe. But inevitably, they share a common goal: to better manage the risks associated with their business infrastructure. Increasingly, Web application security plays a significant role in achieving that goal. Learn more »

Using ERP To Gain Competitive Advantage in a Tough Economy

For midsize enterprises, now is the perfect time to invest in a significant IT expansion - despite the economic climate. Learn more »

Why BI is Ripe For Businesses of Any Size

Oracle's range of offerings to mid-size and emerging companies reflects its vision that BI and EPM solutions can be embraced by companies of all sizes. Learn more »

Oracle Accelerate

Ovum has been following Oracle's Accelerate program over the last couple of years because they thought it is a smart strategy for penetrating the upper mid-market. Learn more »

The New Age of ERP

Not only can small and mid-sized companies reap the renowned ERP benefits of greater agility, increased business visibility and measurable ROI. Learn more »