Antivirus is a heck of a thing. On the one hand, security professionals love to hate on Antivirus because it’s misses a lot of malware and increases the attack surface on a machine. We know that antivirus regularly misses Advanced Persistent Threat (APT) malware. Our stance at Rendition Infosec is that for the vast majority […]
Archive | Antivirus
Should Antivirus software be part of your threat model?
Antivirus Cyber Threat Intelligence Kaspersky Software Supply Chain Threat ModelShould Antivirus (AV) software be part of your threat model? Strictly speaking, yes it probably should be. AV is potentially dangerous to an organization and should be tested thoroughly before being deployed. As argued in the recent WSJ article about Kaspersky (note that the article is behind a pay wall), AV software could threaten the […]
Honestly evaluating the Kaspersky debate
Antivirus Cyber Threat Intelligence Kaspersky Threat ModelRendition Infosec is a zero-FUD (fear, uncertainty, and doubt) firm. We pride ourselves on offering balanced, honest views to our clients and the general public. So far, Rendition has posted on the Kaspersky debate twice. In the first post, Rendition educated the public on why a software audit would not address the fears raised by […]
Is your antivirus software part of your threat model? Maybe it should be…
Antivirus Cyber Threat Intelligence Kaspersky Threat ModelRecently we learned that the US Senate was pushing to add language to the National Defense Authorization Act (NDAA) that would prohibit the purchase and use of Kaspersky software anywhere in the DoD. This is nearly certainly a political move and CyberScoop’s Patrick Howell O’Neill did a great job of covering this story already from […]