AV followup

Tue Apr 10 21:28:26 CEST 2012

A few weeks ago I posted a link to a report from Kyrus which called into
question the effectiveness of virtually all antivirus products.  SANS
has done their own analysis, starting from a completely different
methodology, and has reached much the same results.

The takeaway for GnuPG users is this:

        * Keeping your system malware-free is of paramount
          importance.  Once someone else controls your PC,
          it's all over.

        * AV is of very limited utility.  Nobody is saying
          not to use it, nor that it's of no use at all.
          However, at present the evidence suggests none of
          us should consider our machines safe just because
          we have AV installed and keep it up to date.

http://computer-forensics.sans.org/blog/2012/04/09/is-anti-virus-really-dead-a-real-world-simulation-created-for-forensic-data-yields-surprising-results