there are 3 states to an executable.
A good file…
A bad file…
An unknown file…
The enemy is the unknown file…
Legacy AV products only understand part of the “bad” file and only if they have the signatures…
Comodo understands and handles ALL 3 states…
Trusted bad file is also the problem…
And a major one at that.
Sorry, but you’re cheated…
Trusted bad is less of a problem than what legacy AVs do which is allow an unknown to run.
No system is 100%, its all about the best solution not perfect, because perfection doesn’t exist.
By the fact Comodo has serious vulnerability bugs and now is possible to run (or download and run) unknown application (even malware) bypassing all layers of Comodo security. I hope next update planned on March fix these bugs.
Hopefully Comodo regularly maintains it’s “Safe List” and removes bad vendors/files, I think Advanced users of Comodo should be given more controls over the Trusted Files, both locally safe by TVL and by cloud list.
“Trust, but verify” - Ronald Reagan
Fair enough.
But how is malware being leaked in the Whitelist?
And what is Comodo doing to reduce this ‘imperfection’ to the minimum?