Basic Training Sandboxing and Virtualization Modern Tools for Combating Malware Enter Sandboxing and Application Virtualization Basic Training Application Sandboxing

botnet infections every month, 60,000 new pieces of malware per day, and 60 percent of top Google search terms returning links to malicious sites within the first 100 results (www. mca fee.com/us/about/news/ 2010/q4/20101117-01.aspx). In fact, Cisco has reported that 10 percent of all Web malware is encountered through search engine traffic, with Google being the largest search engine provider of malicious links (www.cisco. com/en/US/prod/col latera l/ vpndevc/3q10_cisco_threat.pdf ). Although targeted malware such as Stuxnet and Aurora grabbed the headlines, most malware in McAfee’s Global Top 10 list supports cybercrime, which means the threat is largely profit driven. Another important trend we’re seeing is that users play a critical role in infecting their machines. The “Here You Have” email worm in September 2010 lured users to click on a link that installed malware and sent the message out to the users’ contacts. Also in September, an email purporting to be a LinkedIn update contained links to sites that infected users when they clicked through. While it’s clear that malware continues to be a major scourge, a study by Cyveillance in April 2010 showed that current antivirus products are largely ineffective in addressing the threat. The Cyveillance study, which included 13 of the most popular antivirus engines, found that, on average, only 19 percent of malware was detected on the first day after the malware became known. Even more shocking, the average detection rate for all 13 products only increased to 61.7 percent on average by day 30. Antivirus products are still an important component of desktop security, but it’s clear that they aren’t effective enough against a threat that prodigiously produces new malware variants by the tens of thousands every day.