In an August report on endpoint security, NSS found that most anti-virus products also don't identify attacks or exploits even after knowledge of them has been public for weeks or months.
Typically that means the vendor will add a patch to identify the first appearance of a virus or exploit, but fails to follow up with virus signatures that make it possible to identify variants or alternate attack routes for that flaw, the report said.
Here's the list of products tested:
- AVG Internet Security Business Edition
- ESET Smart Security Enterprise
- F-Secure Client Security for Business
- Kaspersky Business Space Security with Internet Security
- McAfee Total Protection for Endpoint
- Norman Endpoint Protection
- Panda Internet Security (Enterprise)
- Sophos Endpoint Security and Control
- Symantec Endpoint Protection
- Trend Micro OfficeScan Plus IDF Plug-in.