![]() ![]() The product’s VBSpam+ certification streak continues, this time with a final score of 99.98, the highest phishing catch rate in this test, and no ham or newsletter false positives. Of the participating full solutions, one ( Zoho Mail) achieved a VBSpam award, while seven were awarded a VBSpam+ certification: Bitdefender, Cleanmail, Fortinet, Mimecast, N-able Mail Assure, N-able SpamExperts and SEPPmail.īitdefender’s performance in the Q4 2022 VBSpam test is impressive. Here we highlight the performance of Cleanmail and Mimecast, which both achieved a 100% malware catch rate, as well as that of Bitdefender, which only missed one phishing sample. A better comparison can be made by analysing the products’ performance against the malware and phishing sets, both of which are subsets of the spam corpus. ![]() The majority of the tested solutions achieved spam catch rates of more than 99%. German phishing sample using a tco shortening URL. German banking phishing sample using a lnkdin shortening URL. In this test, these happened to be banking phishing emails, abusing social media shortening URLs (tco, lnkdin). We continue to see a diversity of languages in the most commonly missed phishing emails. Malspam sample with an Emotet infected attachment. The emails contain a few lines of text and a password to open the password-protected attachment.Ī new feature 3 of this particular Emotet campaign is the attacker’s attempt to get the user to manually copy the malicious xls file to a location that is bypassed by default by Microsoft Office scanners.Ĭontent of the Emotet xls infected files. The Emotet malspam campaign continues to evolve, representing a recurring challenge for security solutions. ![]() Malspam sample with an Agent Tesla infected attachment. First seen: 10 November at 02:38 UTC and 08:09 UTC.The Agent Tesla remote access trojan (RAT) was hidden in the archive with an inflated executable. We saw only two samples of this kind, each with the same gz archive attached. It was reported to have been linked with Agent Tesla 2. This malware sample was one of those that managed to escape detection by most of the solutions in the test. Geographical distribution of spam based on sender IP address. Top 10 countries from which spam was sent. (Note: these statistics are relevant only to the spam samples we received during the test period.) # This Q4 2022 report marks the 70th VBSpam test since VBSpam certification began in 2009 – we thank all those who have participated, and on this occasion we also welcome Mimecast, which makes its VBSpam debut in this test.ĭuring the 16 days in which the test ran we saw a fair number of malware and phishing attacks, but the security solutions proved to be a good line of defence, blocking the majority of spam samples in the test.įor some additional background to this report, the table and map below show the geographical distribution (based on sender IP address) of the spam emails seen in the test. The solutions tested publicly were eight full email security solutions, one custom configured solution 1, one open-source solution and one blocklist. One third of the solutions we tested opted to be included in the public test, the rest opting for private testing (all details and results remaining unpublished). In this test – which forms part of Virus Bulletin’s continuously running security product test suite – we measured the performance of a number of email security solutions against various streams of wanted, unwanted and malicious emails. ![]() Spamhaus Data Query Service + SpamAssassinĪppendix: set-up, methodology and email corpora Bitdefender Security for Mail Servers 3.1.7 ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |