New problems with malware, advantages and side effects of network forensics tools and, above all, two important projects to improve European communication practices and structures on information security were the core topics of the European Institute for Computer Antivirus Research (EICAR) conference in Copenhagen, Denmark last week. About ninety international information security specialists attended the conference, listened to high-level presentations and discussed important issues of network and application security. One of the results of the conference was the sense that programming antivirus tools to the needs of the users has become more and more troublesome for today’s vendors. One reason for this is the existence of network surveillance and examination tools, which are used and sometimes even commercially sold as administration tools, but at the same time spread illegally as hackers’ devices. Antivirus software can’t simply stop and delete those tools, even if they are commonly found in the shape of Trojan horses. “We have similar problems with spyware,” explained Jakub Kaminski, Virus Research Manager Computer Associates Australia. “In some cases software of this kind is used for legal collection of data.” Because of these problems, antivirus software can’t be distributed or updated with signature lists ready to use for anyone any more. Administrators will have to spend more time on configuring antivirus programs to the needs of their own organization. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.