02 March, 2011


Just to be contentious (or perhaps state the obvious it has been a while since I participated in the info sec discussion with people other than execs who don't want to spend any money because ["we haven't had an issue in more than a year"])

AV is now useless. Even with draconian settings it catches less than half of the threats in real time. By the time a signature that works gets there most crap has been on the box for over a day.

That said tell me what is wrong. Also what whitelisting products are good and why?

No comments: