Symantec says antivirus software 'is dead'
The company takes the unusual step of declaring one of its major business lines obsolete.
Antivirus "is dead," says Brian Dye, Symantec's senior vice president for information security. "We don't think of antivirus as a moneymaker in any way."
Antivirus products aim to prevent hackers from getting into a computer. But hackers often get in anyway these days. So Mr. Dye is leading a reinvention effort at Symantec that reflects a broader shift in the $70 billion a year cybersecurity industry.
Rather than fighting to keep the bad guys out, new technologies from an array of companies assume hackers get in so aim to spot them and minimize the damage.
Network-equipment maker Juniper Networks (JNPR) wants customers to place fake data inside their firewalls to distract hackers. Shape Security Inc., a Silicon Valley startup, assumes that hackers will steal passwords and credit-card numbers so seeks to make it difficult to use the pilfered information.
FireEye (FEYE) created technology that scans networks for malicious-looking computer code that made it past the first line of defense. FireEye recently paid $1 billion for Mandiant, a small firm led by former Air Force investigators who act like cyber-Ghostbusters after a data breach.
Symantec seeks to join the fray this week. It is creating its own response team to help hacked businesses. Within six months, the Mountain View, Calif., company plans to sell intelligence briefings on specific threats so clients can learn not just that they are getting hacked, but why as well. Symantec also is developing technology to look for more-advanced malicious software inside a network that mimics offerings from its rivals.
The company needs a turnaround. Revenue fell in each of the past two quarters, though profit rose because of cost cuts. The company, which reports earnings Thursday, forecast revenue of $1.62 billion to $1.66 billion for the quarter through March, down at least 5 percent from a year earlier. The company in March fired Chief Executive Steve Bennett, the second time in two years it had ousted a CEO.
Mr. Dye, who has spent more than a decade with Symantec, says it was galling to watch other security companies surge ahead. "It's one thing to sit there and get frustrated," he says. "It's another thing to act on it, go get your act together and go play the game you should have been playing in the first place."
Symantec pioneered computer security with its antivirus software in the late 1980s. The technology keeps hackers out by checking against a list of malicious code spotted on computers. Think of it as an immune system for machines.
But hackers increasingly use novel bugs. Mr. Dye estimates antivirus now catches just 45 percent of cyberattacks.
That puts Symantec in a pickle. Antivirus and other products that run on individual devices still account for more than 40 percent of the company's revenue. Specialized cybersecurity services for businesses account for less than one-fifth of revenue and generate smaller profit margins. It would be impractical, if not impossible, to sell such services to individual consumers.
Ted Schlein, who helped create Symantec's first antivirus product, describes such software as "necessary but insufficient." As a partner at venture-capital firm Kleiner Perkins Caufield & Byers, Mr. Schlein invests in new cybersecurity companies that compete with Symantec.
Mr. Dye says Symantec's Norton security suite has evolved beyond antivirus software and already looks for suspicious activity that may come from previously unseen viruses. It also includes, among other things, a password manager, a spam blocker and a tool that scans a user's Facebook feed to guard against dangerous links.
The company has no plans to abandon Norton but will find revenue growth in its new product lines, he says. "If customers are shifting from protect to detect and respond, the growth is going to come from detect and respond," Mr. Dye says.
Other traditional antivirus makers such as McAfee, Intel's (INTC) security unit, have moved in the same direction. Michael Fey, McAfee's chief technology officer, says there is typically a two- to three-year lag on developing the technology Symantec seeks to create. "They haven't been part of the thought-leader group for some time," Mr. Fey says.
International Business Machine (IBM) on Monday plans to unveil its own security suite that looks for irregular behavior in computer networks.
If Symantec has an opening, it is that no security company has determined how consistently to defeat the most ambitious hackers from China, Iran and the former Soviet bloc. Hackers linked to Iran last spring breached the digital perimeters of energy companies and one of the U.S.'s five biggest banks but were caught before moving further into the systems. The incidents were notable because the two industries have among the best private-sector cyberdefenses.
Cybersecurity firms also want to help discern the most serious threats from the less serious. Before Target Corp. (TGT) was breached last year, FireEye security equipment alerted the retailer to suspicious activity. But the company decided it didn't require follow up. Former Target employees say the team lacked the resources to pursue all threats.
"What do we do with all the things that we're 60 percent sure are a problem?" Mr. Dye says. Analysts say Symantec's software runs on so many machines that it may be able provide more guidance on which hackers can be ignored and which are truly a problem.
—Spencer Ante contributed to this article.
More from The Wall Street Journal
- Strong job creation, weak stock market
- Nobel-winning economist Gary Becker dies
- Corporate takeovers drive idle stocks
Find the hackers and give them 20 years minimum. No plea agreements, no if ands or buts. And remind them that they're going to be someone's girl friend for 20 years or more.
What the technogeeks should be working on, instead of "defenses" for your computer, they should be working on "source-seeking and eradication" software that immediately identifies the source of malicious codes and zaps them at the source and immediately identifies the origin and reports it to internet cops who can surgically isolate the hacker(s) if not catching them red-handed for prosecution. That would put a halt to the lucrative hacker dirge that is flooding the internet. If it is no longer a low-risk, lucrative enterprise, they will stop - or, at least slow down. If nothing else, it will make their efforts so difficult, it just won't be worth it. But then, what would companies do that make their livings providing the same old technologies?
If computer and software makers want us to buy their products, then they should be more proactive in securing their systems and software.
NSA = Worlds Biggest Hacker
How are you gonna keep them out?
They don't even have to get in, they strong arm you data from your suppliers.
Norton and McAfee are worthless, gave up on them years ago.
The best products are free or have a modest charge.
Check out for yourself products like MalwareBytes Pro, Super Anti Spyware, Hitman Pro, Avast among others. I use the first three of those in addition to Avira as my antivirus and Windows firewall. It's called the layered approach and I have no conflicts amongst the programs.
There are also free firewalls like Outpost and Online Armor.
Use common sense browsing practices and good passwords. but make them long, at least 14-15 charcters, with mix of upper and lower case, numbers, and symbols.
Copyright © 2014 Microsoft. All rights reserved.
After enjoying a smooth rise in stock prices since May, investors are about to be hit with another bout of volatility.
VIDEO ON MSN MONEY
Top Stocks provides analysis about the most noteworthy stocks in the market each day, combining some of the best content from around the MSN Money site and the rest of the Web.
Contributors include professional investors and journalists affiliated with MSN Money.
Follow us on Twitter @topstocksmsn.