http://sanesecurity.com/clamav

:)

I check my bulk mail for reporting native language spams (via spamcop.net) and notice there is a perfect message,without any phish URL having 8kb attachment coming from (!) Mastercard/Visa.

8kb exe attachment downloaded fine to my Macintosh undetected by Antivirus “powered by Symantec”. Not forgetting how many yahoo mail users trusting to it, I got alerted and submitted file to Kaspersky online scanner. “Trojan” (of course!). I tried to be nice and submitted file to Symantec as undetected, their online scanner doesn’t detect too.

6-7 hours passed making me anxious enough to find some of Yahoo admins on IRC by guessing channels.

7 hours later Symantec replied “Already in database” bragging about their products , of course other vendors still being nice to them (in fact,their users)must have shared the signature.

Same trojan, changed a bit came 1 month later to my yahoo INBOX, again undetected. This time, I contacted yahoo people directly and alerted them even saving the horrible “No virus detected” as PDF file.

I wonder if they ask $50.000 for phish urls, how much $$$ Yahoo must have paid for that pathetic antivirus?

I am not feeling sorry for them, I am not CEO of Yahoo or shareholder but the money comes back to Yahoo users as overpriced Pop3, undetected pure asm (8kb) trojans etc.

They could support Clam project , a perfect tool for mail scanning fit to their setup or.. they could use a real working antivirus such as Kaspersky.