Saturday, March 7, 2009

Botnet in Enterprise

Here is what the recent study by Damballa found:

- Almost 3-5% of corporate PCs are compromised with bot malware, even with updated anti-virus
- Enterprise-grade Antivirus and IDS/IPS fail to capture 20-70% of new threats
- The typical gap between malware releases and detection by antivirus is 54 days
- Almost 50% of malware samples were not detected on the day they were received
- 15% of samples remained undetected after 180 days

No comments: