Kaspersky is one of the most famous antivirus providers available online and one of our top rated companies here on FatSecurity.com.
Malware attacks are still as fast and furious as ever, and the way we measure how good an antivirus software is, is by conducting hands-on tests.
This video portrays how our professional team goes about conducting a hands-on malware protection test and what we can learn from the collected results.
So, let's see how good the malware detection rate of Kaspersky Total Security is.
Update: This video evaluates Kaspersky Total Security 2017. Just like the previous videos portray, Kaspersky's malware detection scores are formidable!
This test deals with Kaspersky's malware detection score on dormant malware; NOT the detection and removal capabilities on active malware.
Note: Our team always tests the latest version of the software and usually the top-tier product with all the extra added features. The results are also applicable to the lower-tiered Kaspersky products because they all have Kaspersky's core antivirus engine.
To keep a consistent set of results across all tests and antivirus vendors, the team uses the same dedicated standalone PC on a clean Windows 10 OS install.
To view all the other Kaspersky tests, visit our Youtube Kaspersky playlist.
I want to give a brief explanation of what malware is before I get going on the test and results because it's essential for our viewers to really understand what we are testing.
Malware is a piece of software downloaded or installed on a PC or device.
The most popular types of malware attacks are Trojan horses and ransomware attacks.
A Trojan horse is an installed software that steals online records, uses resources, and copies files to a remote location.
Ransomware encrypts files and cyber criminals demand payments in order for the files to be released, or to phrase it better, decrypted.
There are several ways to get infected with the most popular being emails from a friend or unknown contact with a malicious file, a fake PayPal login page designed by a hijacker to control your account, or an IM to a skype or Facebook account with a download link to a file that can be executed on the PC or device.
Several ways to detect these kind of emails are to hover over the link to see if it really belongs to the website in question, and another is to monitor the domain: this means to check that there are no grammar mistakes or added letters that suggest the link isn't authentic.
In order for you to understand how an antivirus software detects malware, I will take a folder with 1000 malware files.
These malware files are the most recent ones from several honeypot servers installed on several networks to collect malware on a daily basis.
A popular way that antivirus vendors detect malware is with a software that uses a mathematical hash on the file to generate a unique number.
This hash is called an MD5.
When you have an MD5 for each malware, you can create a database of signatures. Each antivirus provider maintains a unique database in order to detect malware.
There has to be constant online updates to the signatures database in order to keep the information up to date so that all malware can be detected.
The first thing to do before the test is to update the database.
The update can take some time depending on the bandwidth of your Internet connection and the delta (difference) between the last update and the current signature database.
Another step to carry out is to change the protection settings.
I change the automatic action to delete to allow me to see exactly how many files are left in the folder.
My folder has 1000 files that have been captured as malware in our honeypot servers.
Now to the fun part!
I scan my honeypot folder with Kaspersky.
The process takes some time.
This means Kaspersky's detection rate is 94%, which is quite good!
I double check one of the files by calculating an MD5 online and then copy it into Virus Total (online virus database) to search for it.
The malware appears with red names next to different antivirus vendors corresponding to what they named the virus.
Next to Kaspersky it says 'File not detected' which shows me that it is a Trojan horse and Kaspersky hasn't picked up on it yet.
This folder is updated all the time so it's hard to detect viruses that are distributed on the same day and scanned after a few hours.
Kaspersky Total Security really impressed me with its stellar job at detecting most of the malware.
I recommend you to stay safe and invest in an antivirus software like Kaspersky or Bitdefender.
I hope this video was helpful. For more questions and reviews, visit our list of the best antivirus software.
We promise to only send really good deals and important updates. No spam.