Although many feel that Comodo is hard for the average (or below) user, I must disagree.Comodo is that rare application where less is more.
Although fine tuning can indeed be done, such fine tuning does not add to protection but can lead to confusion and potential issues.
The average user can have a happy life by installing just the FW, changing things to settings that I have suggested (about 10 seconds of work) and clicking on Silent Mode. This results in superb protection with zero popups.
As a recent example of what can be expected with this setup can be seen with the recent ZenRAT malware: Through the use of Google ads, users were directed to a fake BitWarden website BitWarden where they were served up a malicious BW file that was both legitimately signed and Counter-signed, and was undetected by anything for at least a month.
Running the file resulted in the dropping of a Hidden/System daugther- the ZenRAT malware (both a password stealer and at traditional RAT). The stolen data was then sent out to Malware Command in the Netherlands.
Although security applications that rely on Detection were oblivious, Comodo as set up as discussed above protected fully as the RAT, although seeming legitimate, was not first vetted by Comodo so was plopped to die into Containment and all Outbound connections were blocked. All without any alerts to confuse the user.
So where others worry bout malware infections, Comodo users just yawn and proceed on with their lives.
Thats an excellent point that is not understood by many!
Everyone is trying to add extras to stop the “Delivery Mechanisms” vs “protecting against Payload”.
Comodo protects you against malicious payloads, no matter how they are delivered (delivered using browser, email, vulnerability etc etc…simply doesn’t matter…these are all delivery mechanisms and there is always a need for payload at the end)
I already use the options that comodo offers, for example with its own rules in the firewall or in advanced protection to keep some applications in their “barriers” or to contain unknown files etc. more or less strictly.
Comodo has problems recognizing phishing emails, I’ve read it several times. I haven’t had any yet.
Comodo also blocked this site, for example.
Comodo did!
So I can say: protection rate 10/10 or 100% (still).
maybe b ythe manfactures and/or Governments like china etc… or maybe some firmware download pages etc was hacked and then the files hijacked… well you work for a Security company you should know that very well… or you just mocking me
Exactly the point i was trying to make by asking that question, you are 100% spot on @Angelarme !
Once a system is compromised there is no guarantee of cleaning it…system restore is the key.
Comodo is about keeping a clean computer clean!
@Angelarme understood the question and answered it.
Keeping a clean computer clean
vs
Cleaning an existing infection
are two different things.
If you are installing AV product to clean an existing Infection, there is no guarantees and my personal preference is always a system restore.
Keeping an a clean computer clean on the hand is done by not allowing an unknown payload to execute with full access. https://www.youtube.com/watch?v=Frx52YMHZ24 which only Comodo does.
spectre and meltdown similarities, neither you as AV devos nor the customer/user can fix this just mitigate and have to trust that all is just fine… and btw that ish will be on your system regardless if its “new/fresh” insatlled
There is something I don’t understand…
Very very often, when I go to check IPs on Virustotal, Comodo-Xcitium is one of the company that best identifies malicious IPs.
Like here for example:
Why not incorporate these excellent qualities into CIS?
One of my analyzes came from the new ZoneAlarm Next Gen… Obviously, it is not yet perfect and produces a lot of false positives…
Also… I thought the ZoneAlarm engine was Kaspersky, but it seems that it’s no longer vague than that… Sophos? In short… False alarm… Then I installed the real Kaspersky, in Premium edition, it found a few things for me, but nothing worrying.
I have another question, where is the new beta? Almost two months have passed since the release of this misunderstanding in the form of the first beta.
