Google reports on four years of experience in malware detection
Google has announced the publication of a technical report entitled "Trends in Circumventing Web-Malware Detection". This report describes the results of analysing four years of data – from 160 million web pages hosted on approximately eight million sites – collected through the company's Safe Browsing initiative. The report comments that "Like other service providers, we are engaged in an arms race with malware distributors", and that each day Google issues around three million malware warnings to over four hundred million users that use browsers supporting the Safe Browsing API.
The report looks into the four most commonly employed methods for detecting malware: virtual machine client honeypots, browser emulator client honeypots, classification based on domain reputation, and anti-virus engines and trends in how well they work in practice.
The report concludes that none of these detection methods are sufficient on their own to provide protection and it recommends that a multi-pronged approach is needed to improve detection rates.
- Google questions results of malicious site protection test, a report from The H.
- Malware hides from search engines, a report from The H.