In Beware! The “Metavirus”! Rob Slade makes a trenchant point about security alerts and PR.
I guess as soon as someone manages to develop a meme detector, we’ll get lots of PR like this, pointing out that anti-virus is absolutely defenceless against the threat and therefore not worth paying for. And just wait till someone invents an APT meme.
The sad thing is, this ‘alert’ is fundamentally accurate. Back when I was responsible (in a Spaf’s First Law sort of way) for AV for an organization with around 1.4 million employees, metaviruses and memes in the form of chain emails gave me at least as much grief grief as real malware, and that was in the era of the fast-burning massmailer.
Spaf’s First Law? From memory, something to the effect of “If you have responsibility for security but can’t set rules or punish violators, your own role in the organization is to take the blame when something goes wrong.”
Small Blue-Green World/Mac Virus
ESET Senior Research Fellow