SOURCE: CoreTrace


September 09, 2009 08:00 ET

New Research Finds Confidence in Antivirus Solutions So Low 50% of Survey Respondents Considering Discontinuing Use or Expect for Nearly Free

Zero-Day Attacks and Performance Impact Among Blacklisting Failures Cited

AUSTIN, TX--(Marketwire - September 9, 2009) - CoreTrace, the pioneer of client-based application whitelisting technology, today announced the results of a revealing new survey that found most of the IT staff polled felt the threat from malware is on the rise and three quarters stated they are not confident traditional blacklist-based technology is protecting them against threats. Two-thirds believe that blacklisting protection should cost less than five dollars annually. Over half of those surveyed concluded the lack of protection against an increasing number of zero-day attacks as a chief cause for blacklisting-based solution concern, as well as the performance impact of virus scans and the cost of signature subscriptions. Further, more than half of respondents indicated they have considered discontinuing use of blacklisting for malware protection altogether.

The research, conducted by market research firm Dimensional Research, consisted of an online survey of more than 225 worldwide participants representing a wide range of IT functions. The survey was commissioned by CoreTrace, but participants were not informed of that fact to prevent reporting biases. The goal of the survey was to gather data about current opinions around anti-virus and anti-malware protection, as well as future plans for preventing external computer attacks. The research shows that IT departments of all sizes, and professionals at all levels, have steep concerns about the adequacy of anti-malware protection from blacklist-based technology and many are looking to whitelisting.

"As this research shows, IT professionals continue to use blacklist-based antivirus solutions despite being insecure about the level of protection they actually provide," said Diane Hagglund, senior research analyst for Dimensional Research and the survey's author. "Surprisingly, over half of respondents surveyed have considered going so far as to discontinuing use of blacklisting solutions and a good deal are intrigued by an alternate application whitelisting technology approach."

A summary of the key findings from the survey include:

-- 80% of survey respondents indicated they feel threats from malware are
-- 74% indicated they are not confident in blacklisting-based anti-malware
-- 90% of those surveyed have concerns about blacklisting anti-malware
   -- 66% believe they are not effective on "zero-day" of new attacks;
   -- 50% concerned about performance impact of scans;
-- 53% of respondents cited they use blacklisting-based solutions because
   they feel it is better than nothing;
-- 66% of respondents believe blacklisting updates should be less than $5
   per computer per year;
-- 52% of the IT users surveyed have considered discontinuing use of
-- 39% were not aware of options to blacklisting-based approaches;
-- 80% of respondents feel whitelisting is compelling, but only 9%
   currently use this approach;
-- 66% of respondents will only adopt application whitelisting protection
   if they are convinced that users can add new applications without
   requiring IT involvement each time.

High-profile viruses continue to wreak havoc, strengthening the case that blacklisting and reactive endpoint security strategies are broken and opening the door for proactive and more-effective solutions such as application whitelisting. Advances in CoreTrace's award-winning BOUNCER technology make way for a rational transition from black to white. CoreTrace is aggressively breaking barriers to whitelisting adoption with new features in BOUNCER 5.0, that provide the ability to seamlessly allow and whitelist trusted ActiveX installations, improve memory protection, automate and streamline deployments and provide efficient management capabilities including group security configurations. As the industry's most secure and IT-friendly whitelisting solution, BOUNCER is a strong alternative to blacklisting-based antivirus technologies.

"Like so many other survey respondents, we were frustrated with the performance impact that antivirus scans had on our systems," said Scott Carlton, vice president of operations and client services for Click Forensics. "Some staff even went so far as to disabling their blacklisting software. While I understand their frustration and the loss of productivity, we couldn't leave our systems completely unprotected and that is where CoreTrace's whitelisting approach came in. It amazes me that with so much riding on IT security, we continue to follow the status quo, where 'better than nothing' is good enough. If anything else, the results of this survey underscore the need to scout out alternatives like BOUNCER."

A complimentary copy of the Dimensional Research report, titled "Anti-Virus and Anti-Malware: A Survey of IT Professionals," is available for download at The findings of the survey will be discussed during a CoreTrace webinar with Dimensional Research on September 15th at 2:00pm EDT/ 11:00am PDT. To register for this free event, please visit

Survey Methodology

In August 2009, an independent database of IT professionals from small, mid-sized and large IT organizations worldwide were emailed and invited to participate in the Web survey on the topic of malware. The 226 participants were not compensated for participation and represent a wide range of IT functions, including hands-on staff, executives and dedicated IT security professionals.

About CoreTrace

CoreTrace® is the pioneer of client-based application whitelisting. The company's award-winning and patented high-security, easy-change BOUNCER solution is at the forefront of the movement in next-generation endpoint control and security solutions. Unlike other application whitelisting solutions that are simply lockdown technologies, BOUNCER's "Trusted Change" capability enables IT professionals to predefine multiple sources from which users can safely install applications and have them automatically added to the whitelist -- all with minimal IT involvement. The result: full prevention of unauthorized applications, improved overall security, and lower total cost of ownership compared to alternative whitelisting and traditional blacklisting antivirus solutions. CoreTrace's customers include organizations in a wide variety of industries, such as energy, oil and gas, financial services, telecommunications, as well as government agencies.

CoreTrace is headquartered in Austin, Texas. For more information, please visit:

Contact Information