Sophos Anti-Virus Update Identifies Sophos Code As Malware 245
An anonymous reader writes "Yesterday afternoon anti-virus company Sophos Inc. released a normal anti-virus definition update that managed to detect parts of their own software as malicious code and disabled / deleted sections of their Endpoint security suite, including its ability to auto-update and thus repair itself. For many hours on the 19th, Sophos technical call centers were so busy customers were unable to even get through to wait on hold for assistance. Today thousands of enterprise customers remain crippled and unable to update their security software."
Sophos points out that not everyone will be affected: "Please note this issue only affects Windows computers."
There needs to be an award for this (Score:5, Interesting)
Every year, we need to go down the list of software makers who have managed to totally Bork their users. The Meltdown awards. Just to distinguish between the companies that handle it well and the companies that are incompetent.
Malware makers take note! (Score:5, Interesting)
Wanna cause problems? Add code from the various AV vendors...
Here's more than AVIRA... apk (Score:0, Interesting)
McAfee:
http://tech.slashdot.org/article.pl?sid=10/04/21/1735211 [slashdot.org]
Symantec/Norton:
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9019958 [computerworld.com]
ODDLY ENOUGH?
SOPHOS (vs. Google Analytics)
http://www.google.com/search?hl=en&source=hp&q=%22Sophos%22+and+%22Google+Analytics%22&btnG=Google+Search&gbv=1 [google.com]
APK
P.S.=> And I can & DID point out a LOT MORE, & it's happened to myself in wares I wrote, and those of VERY NOTABLE FOLKS in this industry (Nir Sofer of Nirsoft, as well as Dr. Mark Russinovich of Microsoft -> http://tech.slashdot.org/comments.pl?sid=3132237&cid=41401485 [slashdot.org] which some dork downmodded & ran... )
... apk
Windows AV programs are malware (Score:4, Interesting)
Just think about it. The average Windows AV program runs with sufficient privilege to wreck your system by altering or removing arbitrary files. And it gets fed multiple updates per day created by teams of workers working in a hugely stressful situation: When a new virus appears, you've got to get those signatures out NOW.
I'm amazed people don't see this risks in this.