News

Report: IE 8 Leads in Malware Protection

Microsoft's Internet Explorer 8 outperformed four other Web browsers in protecting against malware spread by social engineering techniques, according to a Microsoft-funded NSS Labs report.

NSS Labs is an independent product testing firm, but it received support from seven test infrastructure partners for the study, "Web Browser Security Socially-Engineered Malware Protection -- February 2010" (PDF). Microsoft is not listed in the study as a sponsor, but a spokesperson at Microsoft confirmed the company's sponsorship by e-mail.

The main reason why IE 8 beat out the competition -- which included Apple Safari 4, Google Chrome 4, Mozilla Firefox 3.5 and Opera 10 -- appears to be Microsoft's use of its "SmartScreen Filter" technology. SmartScreen is a reputation-based URL comparison service that warns users of known threats, such as a Web page that attempts to get users to download malicious programs. Chrome, Firefox and Safari all used Google's "Safe Browser feed" service instead. The report did not explain what URL reputation service was used by Opera.

According to the report, IE 8 caught 85 percent of live threats. Other browser fell way behind in protection against socially engineered malware. Safari caught 29 percent of live threats, tying with Firefox. Chrome caught 17 percent, while Opera caught less than 1 percent.

Opera finished dead last in this report's overall comparisons of protection against socially engineered malware. This report is actually NSS Labs' third release on the subject, and Opera similarly trailed in the previous reports, published on July 20, 2009 (PDF) and March 12, 2009 (PDF). Back in March 2009, an Opera Software blog described NSS Labs' report as "just another Microsoft marketing trick." The blog questioned NSS Lab's methodology and suggested that statistical tricks were used.

NSS Labs methodology for the February study is described as a "proprietary Live Testing" approach. The objective is to insert the freshest samples of malware into the testing process over a set period of time. It's an approach that software security vendor Trend Micro announced support for late last year.

The report measured browser protection against malware only when spread by social engineering techniques. It excluded other means of spreading viruses, trojans and worms. Consequently, just 562 URLs passed the NSS Labs' criteria and were used in the study.

Browsers that scored well on the tests essentially had to show protection against trickery used by hackers to get users to click on a link or visit a malicious Web page, thereby downloading a malicious program. Malware associated with browser plug-ins (also called "add-ons") was excluded from the report. The report also did not test for "clickjacking or drive-by downloads."

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

comments powered by Disqus

Featured

  • Compare New GitHub Copilot Free Plan for Visual Studio/VS Code to Paid Plans

    The free plan restricts the number of completions, chat requests and access to AI models, being suitable for occasional users and small projects.

  • Diving Deep into .NET MAUI

    Ever since someone figured out that fiddling bits results in source code, developers have sought one codebase for all types of apps on all platforms, with Microsoft's latest attempt to further that effort being .NET MAUI.

  • Copilot AI Boosts Abound in New VS Code v1.96

    Microsoft improved on its new "Copilot Edit" functionality in the latest release of Visual Studio Code, v1.96, its open-source based code editor that has become the most popular in the world according to many surveys.

  • AdaBoost Regression Using C#

    Dr. James McCaffrey from Microsoft Research presents a complete end-to-end demonstration of the AdaBoost.R2 algorithm for regression problems (where the goal is to predict a single numeric value). The implementation follows the original source research paper closely, so you can use it as a guide for customization for specific scenarios.

  • Versioning and Documenting ASP.NET Core Services

    Building an API with ASP.NET Core is only half the job. If your API is going to live more than one release cycle, you're going to need to version it. If you have other people building clients for it, you're going to need to document it.

Subscribe on YouTube