Symantec should reward the guys who have submited some new threats which symantec was unable to detect.
Updated: 19 Jun 2009 | 23 comments
Status:
Reviewed
Symantec should reward the guys who have submited some new threats which symantec was unable to detect.
As we have purchased the antivirus, we are not supposed to do the job of symantec employees. so the guys who are submitting the new threats should be awarded for this. may be some extra points in this forum.
idea Filed Under:
Comments
I like this idea. What sort
I like this idea. What sort of reward do you have in mind? Something connected to the forum reward point system? For those active in the forums using the pre-existing rewards system could be a good incentive, and for those not active in the forums giving points for submitting threats might just prompt people to start being more active in the forums. Or maybe something else entirely, like a Ferrari. Obviously that last part was a joke : )
Grant-
Please don't forget to mark your thread solved with whatever answer helped you : )
Hi Grant
Hi Grant
Rewards like some points in the forum .or technical training after submitting some no of new threats would be great.
This should be done as guys who are submitting new threat are helping symantec in improving their detection rates which leads to them in a better position in a comparision with other AV products.
When we submit samples to
When we submit samples to Security Response Team, there is a field wherein we enter our email address.
This email address mostly are the same which we use to login in the forums.
Now, if Symantec detects the samples as a threat then they should automatically add points to the users profile is STN. This should be the good idea.
What other guys suggest let see.
Rgrds,
SAM
More exact
This sounds like an Good Idea !! and to make it more affective and spam proof Symantec should award say 100 points to a submission which is detected as new threat.
VMWARE-- SEP 12.1 vs McAfee vs Trend Micro
ADMIN ATTENTION REQUIRED
YES SYMANTEC CAN REWARD THE PEOPLE BY GIVING EXTRA POINTS FOR NEW THREAT SUBMISSION .BY THE TRACKING NO WHICH WE CAN SEND TO FORUM ADMIN. AND AFTER REVIEWING THE TRACKING NO.
ADMIN ATTENTION REQUIRED
thats a good one... just
thats a good one...
just check who send the new threat first...
might have issue later when both are claim they had...
Just my thoughts...
Nel Ramos
yes that is also possible. so
yes that is also possible. so in that case points can be shared as both have submitted.
sounds fair to me
sounds fair to me bro...
thanks..
Nel Ramos
good idea.. they need
good idea..
they need recognition since are doing symantec and all of us a favor....
you have my vote...
I don't agree
Hi,
LOL, who has said that finding new threat is a job only for Symantec?
It is normal that customer gets new infections and we don't detect all of them.
Finding new threats and submitting them is more convenient for the customers than for Symantec and this ability is expected from an IT administrator, it is not something special that should be rewarded.
Regards,
Regards,
Giuseppe
We are paying symantec to be
We are paying symantec to be protected which sometimes symantec fails to do and we have to submit the threat to them .thats why I am asking for some rewards to the submitter.
It is impossible
Due to the incredible amounts (thousands) of new threats that every day are generated, it is impossible for any antivirus to give a 100% protection, therefore Symantec is not failing, it is doing what it is possible, it cannot be "penalized" because it doesn't make miracles.
Regards,
Giuseppe
I actually agree with both of
I actually agree with both of you guys. Obviously it can't be the job of just one person or even one company to be responsible for collecting and registering the absolute slew of viruses that get created each day. We all know that no single anti-virus gives 100% protection. Anyone that actually expects this will not be satisfied with any virus protection they have because it is impossible to do. However the more virus submissions we have the better it is for everyone. So I think if people are more likely to submit virus samples if they get x number of points then I am all for it. At least I think it should be something we should look into.
Grant-
Please don't forget to mark your thread solved with whatever answer helped you : )
silly one!@!
Symantec should consider naming the threat with the first three letters of the reporters name in their nomenclature!!!
Also in the technical info page abt the threat symantec should consider adding the complete name of the person to report the threat. along with the fix.!!
Cheers,
Shan.
Useless
It is nice but useless... any malware has hundreds of variants, Symantec puts all of them under a family name, it is not worth to spend time in classifying every sample we get with a different name for glory of the customer.
Regards,
Giuseppe
No offense and with all due
No offense and with all due respect (And I really, really, really mean it. I cannot emphasise this any more). I don't want to have my name associated with something meant to cause discomfort, inconvenience and all that FUD.
And given that applying that to your surname, all the threats you've discovered would have VIR affixed to that. The general public would just assume that those letters is short for VIRus.
Whereas using my name (RAR) would make people think that it is a compressed file.
“Your most unhappy customers are your greatest source of learning.”
Well that our responsibility
Well...I agree thats our responsibility .
At the end of the day when you are infected with a virus....you have to submit the files to security response...you can't just wait for anybody to submit those files.
As the naming convention goes I like it
eg: W32 -for Win32 processes
Downadup --The name of the threat
.B or C --The variant of the threat
Even the threat names most the times it has a meaning that anybody can understand
Like for Downadup --- I guess it is Down AD User Profile
then Trojan .Downloader.MisleadingApp
VMWARE-- SEP 12.1 vs McAfee vs Trend Micro
Add Option or Create a Tools,for Submitting Virus to Symantec
I'm agree with all of above mentioned @ this is important to submit a virus as soon as possible to the Symantec. But as we know, in other Antiviruses when installed on O.S., when you Right Click on a file, there is an option to Capture / Send file for Analyzing/Submitting file to the Antivirus Company & this is Missing now in SEP 11.X.
I know that, there is an option on Symantec Log for submitting Virus to Symantec, but this is just when Symantec known type of Virus/Worm & will find it. If we find a treat / Worm / Virus or any other Harmfull files ( e.g. autorun.inf / autoply.exe / autorun.exe and ... ), there should be a way like a External tools for Dragging & Dropping infected file to it & Send it to Symantec like Old tools called SARC Submission . So, Please think about this Idea & let me your Valued Comments about it.
I Hope, Symantec will be Better, Everyday by our Comments
You can still submit files from quarantine
So manually add the suspect file to quarantine and submit from there.
you are right Jeremy but if
you are right Jeremy but if this could be incorporated to SEP, then we could automatically send the file via internet...
hope this suggestion attracts more attention...
thanks...
Nel Ramos
This reminds me of an interview
Has anyone watched the reality show of Dog the bounty hunter? Well, he did an interview in one of the mens magazines back when his show was popular.
One of the questions asked to him was something about how often he collects the bounties. And his answer was "not often". He said that whenever he turns one of his targets in, the law enforcement would simply claim that they're already on the trail to catching the target and just waiting for the opportune moment. That he dragged himself in an operation to catch the target and all that "I was here first" statements.
Applying that to zero-day threats, there are a lot of recipients of those malwares depending on how careful and responsible (or the oppisite) the endusers are. Add to that the number of collectors AV companies has, and organizations that also do that. The lists goes on. Make a better system for the threat submission and reward system than the "real world version".
I'd also want to reward the one who made a cure that is more important, and that person is really the one that is doing an AVs job.
“Your most unhappy customers are your greatest source of learning.”
How we can Submit a virus to Symantec, when can't get it or ...?
Hello again to All Admins
I know that, there is posibility when Symantec quarantine a suspect file & then you can send it to the Symantec for Analyzing. But the problem when accured when you have these situation:
1. Sym. Antivirus didn't sense that a file is Virus / Worm & you know it, by your experiences or ... .
2. Sym. Antivirus, can't access to the file/Folder, for some unknown reason ( like Autoply / Autorun ) .
3. Virus Source is unknown & virus is coming from other Network Resources .
4. Sym. Antivirus will Currupt / Mulfunction on the infected system & don't work anymore .
When i see, such a cases, normally use a Rescue CD's of other Antiviruses or Using, Portable Antiviruses that exist & you can Update some of them manually on USB / CD to Clean .
@mon_raralio: I aggree with
@mon_raralio: I aggree with you 100% on that. The Symantec Company owes also from its clients since we are the ones taking the hit and are the first to encounter any unkown infections since we are in the front lines... The faster we send them , the faster a cure could be sent...
If we don't... they would detect it and create new definitions to combat it eventually but in a more delayed rate...
Reality is that we need to cooperate well to get solutions...
The faster we do it.. the better Symantecs reaction time...
This also applies to the other AV in the market today...
Thanks...
Nel Ramos
Would you like to reply?
Login or Register to post your comment.