Chrome improves anti-malware blocking score by 340%
But Microsoft's IE9 stymies seven times more dangerous URLs
Computerworld - Google's Chrome blocked four times more malicious sites and malware than a year ago, but Firefox 4 was much less effective at warning users of danger than Mozilla's browser last year, according to a report released Monday.
Both were thrashed by Microsoft's Internet Explorer 9 (IE9), however, which easily retained its crown, said NSS Labs in a reprise of a 2010 study of browser anti-malware technologies.
Even with Chrome's improved detection -- it blocked 13.2% of the malware links that NSS threw at it during a 14-day run ending June 10 -- IE9 beat it with a score seven-and-a-half times higher.
According to NSS' test results, IE9 displayed a warning message for 96% of the malicious URLs, with the program's Application Reputation feature stymying an additional 3.2% for a total blocking score of 99.2%. Last year, IE9 posted a 99% score.
Application Reputation, or "App Rep," uses a file's hash -- which identifies the file contents -- and its digital certificate to determine whether it's a known application with an established reputation. For instance, "firefox.exe" would be labeled a legitimate download with a known history and reputation. If App Rep's algorithm ranks the file as unknown -- perhaps because the hash value hasn't been seen before -- IE9 throws up a warning when users try to run or save the file.
App Rep is a part of the overall SmartScreen technology included with IE9, the browser that runs only on Windows 7 and Vista.
NSS did not retest IE8, the newest Microsoft browser that works with Windows XP, still the most widely used edition of the operating system. Last year when it put IE8 through the paces, the 2009 browser blocked 90% of the sites that tried to download attack code.
Hackers spread "social-engineered malware" -- NSS Labs' term -- by enticing users to visit malicious sites that then dupe them into downloading attack code. Such downloads often pose as an update to popular software, an innocuous video codec or a seemingly-useful antivirus program.
The tests did not include sites that attack browsers without any user interaction through drive-by attacks that exploit vulnerabilities in Windows or its applications.
Rick Moy, president of NSS Labs, said that Microsoft's SmartScreen technology remains the browser anti-malware technology to beat, pointing out that it easily trumped Google's rival Safe Browsing API, which is used by Chrome, Firefox and Apple's Safari.
Google maintains a blacklist of suspected or known malicious sites, then serves that list via the Safe Browsing API to its own and other browsers.
The troika that uses the API fared poorly in NSS' tests.
Chrome was the best of the three, blocking 13.2%, up 10.2 percentage points from last year, a 340% improvement. Firefox 4, however, displayed a warning on only 7.6% of the URLs, a drop of 11.4 points from Firefox 3.6. (NSS Labs ran its tests before Mozilla shipped Firefox 5.)
- Google quashes 31 vulnerabilities, restores Metro mode 'steppers' with Chrome 34
- Firefox's UI face-lift on track for April debut
- Ex-Mozilla engineer blames Microsoft's rules for Metro Firefox's death
- Mozilla patches 20 Firefox flaws, plugs Pwn2Own holes
- Google reverses field, promises to restore Chrome's scrollbar arrows
- Update: Google ships Chrome 33, patches 28 bugs
- Mozilla's top exec defends in-Firefox ads, revenue search
- Mozilla taps in-Firefox ads as it searches for more revenue
- Mozilla ships Metro Firefox beta for Windows 8
- Mozilla defers Firefox's new 'Australis' UI to April
- Radicati: Cloud Business Email - Market Quadrant 2013 Google was named the top cloud business email provider in a recent report by research firm Radicati. Out of 14 key players, Google...
- Tablets in the Enterprise: A Checklist for Successful Deployment How can you enterprise manage and secure tablets in order to protect corporate data while providing access to the information and applications employees...
- Enterprise Mobility: A Checklist for Secure Containerization The advantages and disadvantages of the multiple approaches to containerization. Learn More>>
- Enterprise File Sync & Share Checklist File sync and share has changed the way people work and collaborate in today's tech-savvy world. Gone are the email roadblocks, clunky FTP...
- Live Webcast LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy... All Security White Papers | Webcasts