Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 6 subscribers
  • Views 34112 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

using AMTSO's anti-malware feature checks

Bob_Stromberg

The Anti-Malware Testing Standards Organization (AMTSO) provides a way to test antivirus programs. Well, it’’’’s actually a check of features and settings. Go tohttp://www.amtso.org/feature-settings-check.html (“Feature Settings Check for Desktop Solutions”), where there are 5 features to check:

1. Test if my protection against the manual download of malware (EICAR.COM) is enabled
2. Test if my protection against a drive-by download (EICAR.COM) is enabled
3. Test if my protection against the download of a Potentially Unwanted Application (PUA) is enabled
4. Test if protection against accessing a Phishing Page is enabled
5. Test if my cloud protection is enabled

I use Sophos Anti-Virus for Mac and have for several years, so I tried these out.

EDIT 2014-03-26 changed test #3 to #4): I had to set some preferences correctly but after doing so SAV passed tests 1, 2, 3, and 5. In my test SAV does not pass the anti-phishing web site test (#4).

I’’’’d appreciate it if other users of SAV would test their settings. I’’’’d rather find that that I made some mistake and that SAV protected against phishing web sites.

Thanks!

:1016485


This thread was automatically locked due to age.
Parents
  • 0

    One thing I noticed, is that Sophos failed Test #4 re: Phishing site, however, at the time, I could see that Sophos was auto-updating its database. After it had finished, it passed Test #4 presenting the dialogue of an unsafe site, as it should. However, I've been trying the tests on the site for some time due to a problem I'm having on a Windows PC using the Chrome browser. Using Firefox, I was alerted by the installed security system, but I never was in Chrome on the PC. I went to one of my Macs, all running Sophos (yes all of them are home computers...I'm retired actually) and the Phishing site was detected. It was only the one instance when Sophos was updating itself, that I was able to proceed to the pseudo-phishing page. Which makes me wonder if in fact, our systems are entirely secure during the Sophos update period?

    I'm running a scan now, after having re-installed Sophos due to the server issue, but I will try to recreate the updating/phishing site access scenario when Sophos next needs an update (if my old eyes can catch it updating!) and post the results.

    Bob

    :1016713
Reply
  • 0

    One thing I noticed, is that Sophos failed Test #4 re: Phishing site, however, at the time, I could see that Sophos was auto-updating its database. After it had finished, it passed Test #4 presenting the dialogue of an unsafe site, as it should. However, I've been trying the tests on the site for some time due to a problem I'm having on a Windows PC using the Chrome browser. Using Firefox, I was alerted by the installed security system, but I never was in Chrome on the PC. I went to one of my Macs, all running Sophos (yes all of them are home computers...I'm retired actually) and the Phishing site was detected. It was only the one instance when Sophos was updating itself, that I was able to proceed to the pseudo-phishing page. Which makes me wonder if in fact, our systems are entirely secure during the Sophos update period?

    I'm running a scan now, after having re-installed Sophos due to the server issue, but I will try to recreate the updating/phishing site access scenario when Sophos next needs an update (if my old eyes can catch it updating!) and post the results.

    Bob

    :1016713
Children
No Data