pdf malware
Options
All Replies
-
Hi @Sam
The answer to your question is: It depends.
What does it depend on?
- Some flows could not easily be analyzed by the firewall. For example https. If the tunnel is between a pc and a web server, no one can decrypt that traffic.
- Although the file could be transmitted via a not encrypted flow, the virus definitions database could not be updated. And although it is updated, that virus could not be included (yet).
I suggest uploading the file to:
www.virustotal.com
and verify that most of the new virus are only detected by some antivirus.
From my point of view, there is not a better antivirus than other for a long time.
Today's best could be the worst next month or next year.
The "best" strategy is to have several antiviruses at different layers of the network, as you have done.
An antivirus on the firewall, and a different antivirus on the PC/Server ... and lit a candle to the saints.
Regards1 -
Hi @Sam,Anti-Spam can scan SMTP and POP3 which traffic is not encrypted.Since TLS is encrypted data, it won’t be scanned.If mails are SMTP and POP3, make sure Virus Outbreak Detection is enabled in Mail Scan.To check if it is in the signature database, go to CONFIGURATION > UTM Profile > Anti-Virus > Signature, enter the virus name and click “Search”.Besides, Kaspersky commercial/home product are file-based detection product. It will scan the whole file (when computer received completely) and then compare it to Kaspersky AV signatures.However, KAV on ZyWALL is designed for gateway anti-virus protection, it is stream-based detection method (checking packet one by one). So the signature database is different from file-based signature.These two are based on two different technology.0
Categories
- All Categories
- 384 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 79 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 909 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 898 Nebula FAQ
- 415 Security FAQ
- 234 Switch FAQ
- 205 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight