Title :
Where Only Fools Dare to Tread: An Empirical Study on the Prevalence of Zero-Day Malware
Author :
Vegge, Håvard ; Halvorsen, Finn Michael ; Nergard, R.W. ; Jaatun, Martin Gilje ; Jensen, Jostein
Author_Institution :
Dept. of Telematics, Norwegian Univeristy of Sci. & Technol. (NTNU), Trondheim
Abstract :
Zero-day malware is malware that is based on zero-day exploits and/or malware that is otherwise so new that it is not detected by any anti-virus or anti-malware scanners. This paper presents an empirical study that exposed updated Micsosoft Windows XP PCs with updated anti-virus software to a number of unsavoury Internet software repositories. A total of 124 zero-day malware instances were detected in our experiment. Our conclusion is that if a user is sufficiently adventurous (or foolish), no anti-virus protection can prevent a zero-day malware infection.
Keywords :
invasive software; Internet software repositories; Micsosoft Windows XP; anti-virus software; zero-day malware; Internet; Monitoring; Operating systems; Performance evaluation; Personal communication networks; Protection; Software systems; Software testing; Storage area networks; Telematics; experiment; malware; zero-day;
Conference_Titel :
Internet Monitoring and Protection, 2009. ICIMP '09. Fourth International Conference on
Conference_Location :
Venice/Mestre
Print_ISBN :
978-1-4244-3839-6
Electronic_ISBN :
978-0-7695-3612-5
DOI :
10.1109/ICIMP.2009.19
