Avira blocks BitDefender beta
Avira's software briefly detected a beta release of rival anti-virus BitDefender as a Trojan.
That's the unenviable situation Avira has found itself in after its popular anti-virus package detected a beta release of competing software BitDefender 2011 as a Trojan - leaving any users attempting to try out the beta without un-installing their existing anti-virus fighting a false-positive warning.
First reported by a Romanian blog and then picked up - and translated - by The Register, a fix has now been put in place to prevent the false positive, but the experience will have left many with a sour taste in their mouths and Avira with a tattered reputation.
Avira's Sorin Mustaca confirmed that his company's anti-virus "mistakenly reported that the BitDefender 2011 product, that hasn't been publicly released yet, was a Trojan,[i]" and blamed the issue on "[i]some components in the installer [being] modified so that the digital certificates became invalid" for the false positive.
BitDefender's Vitor Souza was quick to point out that the false positive was "an issue with [Avira's] detection, and not a problem with BitDefender."
Although only likely to have affected a small number of users - it's rare, after all, to install two competing anti-virus packages on the same system - it's an embarrassment for Avira and one which could have left it facing BitDefender in the courtroom if it hadn't resolved it as quickly as it did.
Are you surprised to see that anti-virus companies still aren't able to resolve the issue of false positives, or will these problems continue to occur until a detection system that isn't signature-based is perfected? Share your thoughts over in the forums.
Previous Article
14 Comments
Discuss in the forums Replyseriously :o
How?
EDIT: Ok so the Register has a pack of dumbasses on their editing room... How can they translate something that isn't even on the language that they say it is?
anyway... isn't it still dumb to be running 2 AVs on a system?
worst of all... to be trying a beta on a personal system?
Yes, but then you are also testing the newest stuff (in his case detection routines). The risk of BSODs, instability and other mayhem is one you take.
Depends on which antivirus/antispyware/security suite combination you use. I haven't seen any slowdowns running ESET with Symantec
Also I don't think this was a false positive either, Bit Defender is such a POS that Avira was just trying to protect you... and isn't that what AV software is for?
QFT
I love Avira and it's false positive madness - it's started detecting Crysis Warhead (Steam copy) as a Trojan :|
Its probably the DRM portion of the exe thats messing with it :/
With that said I haven't used antivirus software in 5 years and have never gotten a virus since. I am rewarded with a computer that runs faster and more reliably. The only way a smart user will get a virus is if they intentionally install it. Otherwise it is a rare occurrence of 0day bad luck that I have yet to experience in 5 years. I use VM's for visiting websites and running software I don't trust. A kind of proving ground for security and reliability too.
I know you can get a virus come through a VM but that is a sophisticated attack that just isn't implemented by malware writers. Probably because they use VM's too in order to write the malware and don't want to infect their own machines. Whatever the reason it appears to be an ignored vector of attack.