The sad state of the Spyware/malicious codes war right now is that the Spyware developers are way ahead of the game in their techniques and ways of installation and implementations. Today a variant is released and in the time it takes the "anti-spyware" developers to come up with blockers, stoppers and removers there are already 2 more strains that come in behind the one you're trying to catch.
Most Anti-Spyware developers are using behavioral tactics to detect and stop the attacks and infections. So now the Spyware developers have backup apps and processes that lay low and keep an eye out n the app that does the work, if removed these "sleeper apps" reinstall and reinitialise the threat and even goes as far as changes the name, form of methods of infections. We've gone past the permissions issues where only administrative accounts could install these threats if infected, the permissions level have changed and now any user account on the box can be a victim of these threats.
So how will we win and when will we start seeing anti-spyware tools that really work?
When the anti-spyware developers dedicate the time and effort into closely analysing, studying, looking and testing their systems against these threats. Developing solutions based on concepts and ideas won't win this war, testing and foreseeing the types of flaws and vulnerabilities in the OSs and applications is the way to go.
We need smarter developers to think like the apyware developers and are quick to block and stop a possible attack/infection.
Keep Up with TechRepublic