Learn about Zero Trust Architecture
Impenetrable cybersecurity without sacrificing usability
Gain detailed visibility into all your endpoints activities
Harden applications and hardware environments
Immediate and continuous response to incidents
Close the window of time your data could be exposed
Get your Comodo solutions setup, deployed or optimized
Control access to malicious websites
Defend from any internet based threats
Stop email threats before it enters your inbox
Preserve and protect your sensitive data
Keep your website running fast and malware free
Add encryption to your websites
Automated certificate mgmt. platform
Secure private intranet environments
Digital signature solutions for cloud apps
Encrypt emails for senders and recipients
Stay compliant with PCI DSS
Trusted authentication for IoT devices
Francisco Partners a leading technology-focused private equity fund, has acquired a majority stake in Comodo’s certificate authority business. Newly renamed from Comodo CA Limited to Sectigo Limited. Privacy Policies, Trademarks, Patents and Terms & Conditions are available on Sectigo Limited’s web site.
Meet the people behind the direction for Comodo
Get the latest news about Comodo
People are the key to achievement and prosperity
Stay up to date with our on-demand webinars
Worldwide: Sales, Support and General Inquiries
Schedule a live demonstration of our solutions
Need immediate help? Call 1-888-551-1531
Instantly removes viruses to keep your PC virus free
Experience true mobile security on your mobile apple devices
Secure Internet Browser based on Chrome
Chrome browser internet security extension
Submit a ticket to our support team
Share any product bugs or security flaws
Collaborate with research experts on data sets
Valkyrie Threat Intelligence Plugins
Valkyrie Threat Intelligence APIs
The four most used antivirus have been put to the test and found wanting. We are not surprised.
Comodo long ago concluded that the conventional approach to Internet security, which relies on preventing harm by detecting known threats, is fundamentally flawed. That’s why we have architected solutions that go beyond detection to prevent and contain threats that detection cannot address.
A recent study by the security firm Damballa provides ample evidence that our premise is correct, documenting their fundamental flaw which they refer to as malware “dwell time”. This the time period from when a malware file compromises a system and the time the antivirus is able to detect it.
In a test of the four most used antivirus software, 36% of the test malware were not detected within the first 24 hours. A full week later 28% remained undetected. In fact, it took more than six months before these products detected 100% of the test intrusions!
Damballi concludes that infection dwell time is a by product of the failure of the detection approach to prevention. Most antivirus leave you unprotected and vulnerable to the infections during this period.
All it takes is one failure to open the door for hackers to have free reign with worst case consequences, and the volume of threats to respond to is truly overwhelming. Damballa cites a 2015 Poneman Institute report that shows that the average enterprise receives 17,000 malware alerts weekly from their IT security products and that a mere 4% of these alerts triggered investigations by the IT staff.
Conventional security is typically augmented with additional layers, most significantly behavior analysis that looks for known malicious behavior. While such approaches go a step beyond reliance on the signature file of known threats, they have not been able to prevent worst case scenarios at high profile organizations
antivirus software is like a bomb disposal unit that has not yet figured out where the bomb is. They have to find the bomb to defuse it. Even worse, if the bomb goes off before it is detected the surroundings are unprotected!
If the bomb disposal unit knows about a threat they can usually deal with it. It is the unknown threats that blow up!
Some antivirus provides a secure system area called a Sandbox where you can safely run a suspicious. Think about it like a criminal suspect who is held in jail while the police investigate a crime. Unfortunately, they rely on the user to make the decision to put the file in the sandbox. Most users are not able to make that call or make it correctly on a consistent basis.
Unknown files that turn out to be malicious are often called “zero-day threats”. These are threats that are being spread by hackers but have not yet been identified by security experts and security software vendors have not yet been able to update their systems with a solution. For conventional antivirus this a worse case scenario.
For Comodo Internet Security software, a zero day threat is just another day at the office and not to be feared by our users.
Comodo Security Solutions various endpoint solutions include a unique architecture called default-deny Auto-Sandboxing. Unlike conventional PC security which allow access unless a threat is confirmed, Comodo Systems deny access to the system if it is an unknown file. The file may run in a sandbox where it can be further analyses, but can do no harm to your system or files.
This is part of a broader strategy called application containerization where you can operate safely even on an infected endpoint. What does a bomb disposal unit do with a bomb they have located? If possible they put in a secure containment unit where they can still work with it, but if it explodes all will still be safe. A sandbox accomplishes much the same thing with potentially malicious software. Comodo can analyze it, but if turns malicious the threat is contained.
Sign up to our cyber security newsletter
Comodo Cybersecurity would like to keep in touch with you about cybersecurity issues, as well as products and services available. Please sign up to receive occasional communications. As a cybersecurity company, we take your privacy and security very seriously and have strong safeguards in place to protect your information.
See how your organization scores against cybersecurity threats
Advanced Endpoint Protection, Endpoint Detection and Response Built On Zero Trust Architecture available on our SaaS EPP