pdf malware
All Replies
-
Hi @Sam
The answer to your question is: It depends.
What does it depend on?
- Some flows could not easily be analyzed by the firewall. For example https. If the tunnel is between a pc and a web server, no one can decrypt that traffic.
- Although the file could be transmitted via a not encrypted flow, the virus definitions database could not be updated. And although it is updated, that virus could not be included (yet).
I suggest uploading the file to:
www.virustotal.com
and verify that most of the new virus are only detected by some antivirus.
From my point of view, there is not a better antivirus than other for a long time.
Today's best could be the worst next month or next year.
The "best" strategy is to have several antiviruses at different layers of the network, as you have done.
An antivirus on the firewall, and a different antivirus on the PC/Server ... and lit a candle to the saints.
Regards1 -
Hi @Sam,Anti-Spam can scan SMTP and POP3 which traffic is not encrypted.Since TLS is encrypted data, it won’t be scanned.If mails are SMTP and POP3, make sure Virus Outbreak Detection is enabled in Mail Scan.To check if it is in the signature database, go to CONFIGURATION > UTM Profile > Anti-Virus > Signature, enter the virus name and click “Search”.Besides, Kaspersky commercial/home product are file-based detection product. It will scan the whole file (when computer received completely) and then compare it to Kaspersky AV signatures.However, KAV on ZyWALL is designed for gateway anti-virus protection, it is stream-based detection method (checking packet one by one). So the signature database is different from file-based signature.These two are based on two different technology.0
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 114 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 65 Switch Ideas
- 901 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 831 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight