Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint

Startup Launches Free, Collaborative Antivirus Package

Immunet offers cloud-based solution that innoculates an entire community when one member is infected

Current methods for protecting individual PCs from viruses aren't working. So a startup today launched a new, cloud-based approach that is designed to protect whole groups of PCs and users at the same time.

The new, venture-backed company, Immunet, is offering a free application called Immunet Protect that can be downloaded and passed around to friends or business partners for free.

"The way we're fighting viruses today isn't working," says Oliver Friedrichs, a former Symantec executive who is now Immunet's founder and CEO. "Fewer than 50 percent of infections are detected and stopped by the AV products that are out there. That means when I go surfing on the Web, the chances are 50-50 at best that my AV software will prevent me from getting infected."

Playing on the popularity of Internet communities and social networks, Immunet leverages the computers of a user's friends, family and the broader Internet community to speed antivirus protection.

"Every time someone in this collective community encounters a threat, everyone else in the community gains protection from that same threat in real time," Immunet says. "You no longer have to rely on the isolated security of your current antivirus vendor. You will be able to protect your friends and family while being better protected yourself."

Immunet Protect uses a combination of cloud computing, collective intelligence, and user communities to make virus detection and protection more efficient, Friedrichs says. When the software detects a new threat, it triggers an immediate reaction from all of the other Immunet Protect packages in the community, blocking the threat regardless of which AV tool the participants are using. The data is then passed into the cloud, where it can be used by other communities.

"The more users that have it, the better the protection will be," Friedrichs says.

Friedrichs emphasized that Immunet Protect can run alongside current AV products. In fact, he says, it's designed to harness the data from security products that are already in place.

"Immunet Protect collects security judgments on what is, and what is not safe from its community," Immunet says. "These aggregated judgments are coalesced in the cloud, and, if they are sound, made available to the rest of the Immunet community immediately. "

Prevx applied the collaborative concept to the host intrusion prevention system years ago, but the technology did not revolutionize the market, notes Mike Rothman, principal analyst at Security Incite, a security consulting firm.

"Prevx took a similar approach in developing a community oriented network to define malware, but it didn't work very well," Rothman observes. "That could have been for a lot of reasons, and clearly the guys behind Immunet are smart, so maybe they can get this community approach to work."

Rothman also wondered about Immunet's business model, which so far doesn't have a paying product. Friedrichs says Immunet Protect will remain free, even well into the future, but that the company will add additional features or capabilities down the road that may cost extra. The company is targeting consumers first, and will move to the business market later, he says.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
When It Comes To Security Tools, More Isn't More
Lamont Orange, Chief Information Security Officer at Netskope,  1/11/2021
US Capitol Attack a Wake-up Call for the Integration of Physical & IT Security
Seth Rosenblatt, Contributing Writer,  1/11/2021
IoT Vendor Ubiquiti Suffers Data Breach
Dark Reading Staff 1/11/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-3113
PUBLISHED: 2021-01-17
Netsia SEBA+ through 0.16.1 build 70-e669dcd7 allows remote attackers to discover session cookies via a direct /session/list/allActiveSession request. For example, the attacker can discover the admin's cookie if the admin account happens to be logged in when the allActiveSession request occurs, and ...
CVE-2020-25533
PUBLISHED: 2021-01-15
An issue was discovered in Malwarebytes before 4.0 on macOS. A malicious application was able to perform a privileged action within the Malwarebytes launch daemon. The privileged service improperly validated XPC connections by relying on the PID instead of the audit token. An attacker can construct ...
CVE-2021-3162
PUBLISHED: 2021-01-15
Docker Desktop Community before 2.5.0.0 on macOS mishandles certificate checking, leading to local privilege escalation.
CVE-2021-21242
PUBLISHED: 2021-01-15
OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, there is a critical vulnerability which can lead to pre-auth remote code execution. AttachmentUploadServlet deserializes untrusted data from the `Attachment-Support` header. This Servlet does not enforce any authentication or a...
CVE-2021-21245
PUBLISHED: 2021-01-15
OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, AttachmentUploadServlet also saves user controlled data (`request.getInputStream()`) to a user specified location (`request.getHeader("File-Name")`). This issue may lead to arbitrary file upload which can be used to u...