Thread: Which Browser does the best job of blocking malware?

Originally Posted by harrybarracuda

So let me get this straight:

One NAMES the company that PAID for the survey.
You don't believe the company doing the survey influenced the result.

One DOESN'T NAME a company that paid for the survey.
You believe the company doing the survey influenced the result.

You're a bit fucking dim, aren't you?

Not as dim as you it would seem. So have you any evidence against Accuvant yet? No? and I bet you have been googling like made to find some but come up with fuck all.Therefore we can concluded you are a major bullshitter.

Malware report from NSS Labs manipulates statistics?

Thursday, March 26, 2009 2:56:03 PM
malware, opera, fud, security, microsoft
A Microsoft sponsored study concluded that IE8 catches the most malware, and that Opera catches nearly nothing. But can the report really be trusted?


We will never know what's really going on because important part of their selection and methodology is simply not revealed. As such, there is no way to verify or falsify their claims, possibly pushing this into the realm of pseudoscience.

One can also question the objectivity of NSS Labs when they make statements like this:

We were impressed by the stability of IE8 (RC1).

An interesting observation is that the report is from March 12th, 2009. They claim to have done 24/7 testing for 12 days, meaning that they must have started before Opera 9.64 was released, even though it's in their report!

There are other problems as well:

• Safari 4 and Firefox 3.1 were left out, while IE8 RC, a non-final version, is allowed
• The report says that 7% of the threats were blocked by all browsers, but Opera is claimed to have blocked only 5%
• They started out with 150 000 URLs, but ended up with only 492 in the final test
• Out of the 492 final tests, the same site could have up to 10% of the URLs, meaning that in a "worst case scenario", 10 unique sites were tested! If a browser did particularly well on one of these sites making up more than 10% of the test, their score would obviously be inflated (the report mentions that a number of sites were pruned after reaching their limit)
• According to the "Malware URL Response" table on page 3, Opera catches 15% on hour 0, and 33% after 5 days. And yet the final rate was set to only 5%
• According to the same table, Chrome consistently catches 25% or more, but the final score is only 16%
• The same table shows that IE8 never reaches 69% even once in the table, and yet its final score is raised to 69%
• On the other hand, IE7 has a total score of 17% in the table, but the final score is lowered to 4%

One could almost get the impression that NSS Labs is setting the test up in a very specific way to exaggerate the results in a certain direction:

The computations are done based on this "So if it is blocked early on, it will improve the score. If it continues to be missed, it will detract from the score." Sounds like a typical statistical trick to exaggerate differences found between browsers - those that do well will further improve their score, those that do less well will further decrease their score. With proper selection of the algorithm, one can maximise the resulting difference. This is how an absolute score of 33% for Opera is changed to a score of 5% after the statistical manipulation.

As mentioned above, these anomalies do not only affect Opera, but all the browsers in the test. What could in reality be a tiny and insignificant difference turns into what seems to be a huge gap in the final report. Do other browsers really report less than half of what IE8 does?

The test also measures success at preventing malicious sites from being downloaded, but if Opera only shows the warning after downloading the page, it will automatically fail on a lot of tests even though the user is actually warned. It is not the downloading which is dangerous, but the report does not take that into consideration.

This report is receiving quite a bit of attention from the media. From a quick glance at the numbers, my preliminary conclusion is that this is just another Microsoft marketing trick. By carefully manipulating methods and statistics, you can make a set of numbers show just about anything.

I wonder if the other browser vendors have investigated the report, and if they plan to respond in an official manner. I don't know if we will offer any official statements on this, but I don't think what appears to be rather obvious manipulation of the numbers to exaggerate differences should go unquestioned.

It does seem that I am not the only person who is not convinced. Are there any other reports out there that don't simply repeat Microsoft's claims without question?

In order to look more closely into the claims in this report, I have mailed NSS Labs and requested the URL list. Check back later for any updates. (Update: They never sent any URL lists.)

Yet another unscientific report on browser security from NSS Labs

Wednesday, July 20, 2011 9:52:29 PM
malware, nss labs, security, microsoft
It's that time of the year again.

NSS Labs publishes yet another report on socially-engineered malware, and Microsoft's browser incidentally wins it with a huge margin again. Strange, isn't it?

There's no need for me to reiterate all the problems with the report in this post. My post on the subject from back in 2009 is still mostly valid, so feel free to take a look.

The report is still equally unverifiable, poorly put together, and seemingly "tampered" with to boost IE's score. Does anyone really believe that IE is not only better, but far superior to any of the other browsers?

If they do, they really should consider the major issues with the report.

A blog from 2009 that, once again, names no names (or facts, for that matter)?

Who's the one googling like mad?

These NSS labs sure seem to be very pro Microsoft as can be seen here. Sounds a bit dubious to me.

NSS Labs - news tag

Year after year claiming that Microsoft IE is the most secure browser and also that their security products are better as well.

Who's the one googling like mad?

I never use google,so you are wrong yet again.

Originally Posted by Primo

These NSS labs sure seem to be very pro Microsoft as can be seen here.

When you argue without any understanding of the issues involved, it just makes you look like a knob jockey.

NSS Browser tests on Phishing, 2012:

The people at the Opera browser not happy with NSS Lab reports either, wow the list is growing.

Opera Responds to NSS Labs Browser Security Research Report



Thomas Ford, the PR Manager of Opera Software has also raised some concerns about the recent NSS Labs Report results (where Opera scored 0%) and responded with the following statement (as from ConceivablyTech email).

We have some concerns with the results posted by NSS. First, we are unclear as to why they received no results. We use AVG and Yandex, among others, for our fraud protection solution. Both have performed well in our testing. It is odd that they received no results from our data providers.
The latter could indicate that what NSS Labs actually tests is the providers that Microsoft uses in IE. As such, the test almost becomes a QA test of Microsoft’s own system rather than a real test.

Furthermore, social malware protection is not an indicator of overall browser security. It is an additional functionality we added to our Fraud Protection mechanism, to help people avoid installing bad software on their computers, but has nothing to do with the security of the web
browser itself. For a better overview of browser security, we recommend Secunia.
We would welcome full disclosure of the methodology from NSS Labs, including the URLs actually used in the tests, so we could better understand the results they obtained.


Well I have provided a list of people and reputable businesses who disagree with harry the dick, harry has provided fuck all but a picture of straws.

NSS Labs sucks. Period.

Originally Posted by harrybarracuda

Originally Posted by Primo

These NSS labs sure seem to be very pro Microsoft as can be seen here.

When you argue without any understanding of the issues involved, it just makes you look like a knob jockey.

You obviously did not read my link which makes it really clear that NSS favours Microsoft year after year as the most secure browser and also states that Microsoft security software is better than any other. Sounds fishy to me but you seem to lap it up.
http://news.softpedia.com/newsTag/NSS+Labs

Originally Posted by bsnub

NSS Labs sucks. Period.

They certainly seem ever so dodgy to me and the evidence against them stacks up pretty well I feel. Seems like Harry believes everything they say though. lol

I will leave it there, I have provided enough proof I believe.

Originally Posted by Primo

You obviously did not read my link which makes it really clear that NSS favours Microsoft year after year as the most secure browser and also states that Microsoft security software is better than any other. Sounds fishy to me but you seem to lap it up.

Suggest you look up. You know, the picture where NSS said Chrome was better at stopping Phishing?

Fucking retard.

Originally Posted by bsnub

NSS Labs sucks. Period.

Fuck off Snubs, it's past your bedtime and you've been drinking again.

Originally Posted by harrybarracuda

Originally Posted by FlyFree

Saw that and tried it. Had to uninstall coz it kept crashing my Kaspersky.

Then Kaspersky probably isn't working properly. Made sure you have the latest version?

Yea. Pure 3.0



Actually just tried Opera again this morning. Used to use it way back when before FF.

Very light and fast. I'll leave the malware detection to the anti virus/malware software.

Originally Posted by Primo

You obviously did not read my link which makes it really clear that NSS favours Microsoft year after year as the most secure browser and also states that Microsoft security software is better than any other. Sounds fishy to me but you seem to lap it up.

NSS Labs on Exploit Protection:

NSS Labs tested 13 popular endpoint security suites to measure their effectiveness in protecting Windows computers against exploits. Consumers, and enterprises employing the BYOD model, that seek protection from attacks against desktop PCs and laptops should closely examine results from this test.



Overall Exploit Block Rate

Sorry, where's the bit where they "state that Microsoft security software is better than any other"?

Originally Posted by FlyFree

Originally Posted by harrybarracuda

Originally Posted by FlyFree

Saw that and tried it. Had to uninstall coz it kept crashing my Kaspersky.

Then Kaspersky probably isn't working properly. Made sure you have the latest version?

Yea. Pure 3.0



Actually just tried Opera again this morning. Used to use it way back when before FF.

Very light and fast. I'll leave the malware detection to the anti virus/malware software.

I love Opera Mini, maybe because I get can get directly to my bookie, which my ISP blocks, without any add-ons. But yuk on the Desktop. Prefer Chrome myself.

Anyway I do not use IE,its shit and always has been. Opera is a very good fast browser,Firefox is also good because it gives you some excellent security addons, noscript being an absolute must to stop hijacking and malicious scripts on your computer. Chrome is very fast but google are spying on you all the time,I do not use any google products at all.

Primo FFS that's two threads on which you're making yourself look like a c u n t.

Stop posting a different story every time, when you haven't addressed the bullshit you've posted already.

Give it a rest mate.

Moving goalposts does not make you look smart, it makes you look fucking stupid.

I've just posted two NSS examples where they recommend (a) a different Browser to Microsoft and (b) different anti-malware to Microsoft.

Are you that fucking dumb that you keep trying to dig yourself out a hole?

Originally Posted by Primo

Originally Posted by harrybarracuda

Are you that fucking dumb that you keep trying to dig yourself out a hole?

Only one guy in a hole here and its you. I am the one who has presented evidence from the spokemen of Opera browser and AVG software who both question your NSS tests,I have also provided another software company owner questioning NSS bias towards Microsoft. I provided more evidence on top of that questioning NSS methods and you have provided nothing to contradict any of it, you have skipped most of what I posted and come back with various insults.You even questioned where was the evidence stating that NSS said that Microsoft security software was better than anyone else even though I posted a link to a report on it. Anyone would think you had shares in NSS,lol. All round you lost. Get over it and move on.

Blah Blah fucking blah, post some more crap you don't understand.

What a witless fucker.

Originally Posted by harrybarracuda

Originally Posted by Primo

Originally Posted by harrybarracuda

Are you that fucking dumb that you keep trying to dig yourself out a hole?

Only one guy in a hole here and its you. I am the one who has presented evidence from the spokemen of Opera browser and AVG software who both question your NSS tests,I have also provided another software company owner questioning NSS bias towards Microsoft. I provided more evidence on top of that questioning NSS methods and you have provided nothing to contradict any of it, you have skipped most of what I posted and come back with various insults.You even questioned where was the evidence stating that NSS said that Microsoft security software was better than anyone else even though I posted a link to a report on it. Anyone would think you had shares in NSS,lol. All round you lost. Get over it and move on.

Blah Blah fucking blah, post some more crap you don't understand.

What a witless fucker.

and it turns out that Microsoft funded the tests as well. LMAO


Microsoft, IE security, NSS and the vendor funded study conundrum



For NSS Labs president Rick Moy the questions about his company's study of Internet Explorer security must get old. It's a bit like the movie Groundhog Day. Microsoft finds IE is more secure than other browsers according to a study by NSS and then Moy gets questions about the data and methodology because the software giant funded the research.
Every time there's a NSS study, Microsoft markets the results. However, the NSS relationship started as an engineering relationship. Microsoft found NSS' backed up its own findings and it's pitch city.
Today's headline: IE 9 was able to stop 99 percent of socially engineered malware. IE 8 checks in with 90 percent. The rest of the browsers don't come close. I'm so skeptical about vendor funded studies that I usually don't bother with the briefings. For some reason---slow news day and perhaps curiosity---I took this one. The headlines are all fairly predictable: Microsoft funded study claims IE most secure.



Microsoft, IE security, NSS and the vendor funded study conundrum | ZDNet




Game set and fucking match harry.

2010?

Fuck me, stop scraping the barrel man, look at post 32.

If I had a puppy like you I'd drown it in the toilet.

Chrome sucks at the moment go to watch Moto Gp or cricket on a couple of streaming sites loads of pop ups also trying to install malware.
Change to firefox same sites no problem what so ever i use the same extensions on both browser.
Only had this trouble with chrome for a week can't work out why it's letting so much crap through at the moment.