Based on the results effectiveness evaluations carried out in the third quarter of 2014, the independent organization MRG Effitas has Kaspersky Internet Security as the solution that provides the most effective protection for online transactions.
As in the previous evaluation, which was implemented in the second quarter, security solutions were tested in three phases. However, this time the MRG Effitas lab used an improved methodology. In particular, the Man-in-the-Middle (ie, interference attacks on the data transmission protocol for data fraud) was abolished.
Instead, the agency assessed the quality of protection against API Hooking attacks, which are implemented by injecting malicious code into browser processes tourand the subsequent redirection of key API functions, in order to intercept confidential information and redirect it to the attacker. Since the programs used in the tests were not samples of widespread malware, they were unknown to security solutions. The purpose of the test, therefore, was to assess the ability to protect against zero-day threats. The Kaspersky Internet Security has successfully prevented all four attempts to penetrate malicious code into the browser protected by the solution.
The other two control steps, as in previous trials, evaluated the level of protection that could be offered by solutions against widespread malware capable of stealing bank account login information or interfering with the online information exchange process, and a test on modern botnet. In the first phase, solutions were called to detect 406 malware that had been widely spread by digital criminals during the trial period. This Kaspersky Internet Security successfully detected and prevented all these malicious programs.
The second phase was carried out on systems that had been "contaminated" by use files που περιείχαν προγράμματα Trojan για τα πιο διαδεδομένα botnets. Οι Command & Control servers των botnet είχαν ρυθμιστεί μέσα στην υποδομή του εργαστηρίου δοκιμών, επιτρέποντας στους ερευνητές να προσδιορίσουν αμέσως αν το κακόβουλο λογισμικό ήταν σε θέση να υποκλέψει στοιχεία πρόσβασης ή όχι. Το Kaspersky Internet Security εμπόδισε αποτελεσματικά και αυτή την απειλή, αποτρέποντας τη διαρροή δεδομένων.
Based on the test results, Kaspersky Internet Security once again proved to be a reliable security solution and received the certification of MRG Effitas. In total, of the 17 solutions that participated in the evaluation, only four were able to protect the user from all banking digital threats. Of these, only two were complete Internet security solutions, while the rest were highly specialized applications designed specifically to protect online payments.
"The online payment services are of particular interest to digital criminals, as by interfering with the information exchange process between the services and their customers, they can gain access to the accounts. That is why Kaspersky Lab considers the protection of users from financial digital threats as one of its most important goals. The test results confirm that Kaspersky Lab's technologies – and especially the technology Safe Money They are able to provide effective protection against the most modern threats to them online banking systems », commented Timur Biyachuev, Anti-Malware Research Director of Kaspersky Lab.
Safe Money's technology Kaspersky Internet Security protects e-transactions by matching the address of a payment site to a cloud database, confirming the authenticity of the security certificate, by isolating browsers from attempts to penetrate malicious code and preventing the download of a screenshot. More information about this technology can be found at whitepaper of Kaspersky Lab.
