Request a Demo

Learn About New Options That Can Provide Zero Day Malware Detection

The problem that most companies have is that zero day malware is different than other types of viruses and spyware. This kind of malware has no fix. The vendor of the software or hardware doesn’t know that a problem exists or has just learned of the problem. Therefore, they haven’t created a patch or hotfix and haven’t been able to get it sent out to everyone yet. Hackers and cyber thieves use that mix up to create malware programs that can steal information and no one even realizes or has just realized the situation.


Antivirus programs are very successful at stopping known situations, but they rely on lists and signatures that are compiled for malicious programs that have already been identified. At Comodo, we believe that zero day malware detection is possible with our product, which is more than just an antivirus and spyware detector.

It is important to realize that POS security isn’t just about securing the POS system. You’ll also want to ensure that the network computer that runs the system is as secure as possible, as well. The difficulty is that most zero day malware isn’t already known, so most antivirus systems can’t do much.

How we’re Different

Because most attacks consist of three phases, there are many times when the antimalware program can work and do its magic. The three stages include:

  • Exploitation phase. During this time, the attacker tries to get the spyware onto the computer and runs shellcode.
  • Installation phase. During this period, the shellcode starts working and fetches malicious binary code and runs it.
  • Control phase. During this time, the malware talks to its server, gets instructions and any other additional tools necessary and starts to send out stolen information.

Most antivirus programs work during the exploitation phase, which is the best way to go. However, zero-day versions don’t allow that, and so our product uses the installation phase to find out that malicious code is there and removes it. Contact us today for more information.