Gartner Blog Network

Anti-malware Effectiveness Perception Survey Results: Irony Strikes Back

by Anton Chuvakin  |  January 10, 2014  |  2 Comments

Sometimes the insight is deeply hidden in the lack of insight. Remember my “Survey on Anti-malware Effectiveness Perception”? I asked one question: What percentage of incoming malware do you think is caught by traditional anti-malware products at a typical organization?

Here is what I got:



An utter mess, as a statistician would say! Compare to my other survey which came out nice and clean.

Here it is with cumulative counts (0-10%,0-20%,0-30%, etc):


Just as big of a mess…

What can we learn form this?

  • We have no idea whether AV works or not. None whatsoever! Nada! Zilch! Nul!

Let’s do some “big data analytics” on this survey (after all, 68 responses is BIG DATA…right?!). Specifically, we’ll use an advanced analytic algorithm of addition (ZOMG! A math wizard…run…run!) and add up the numbers in the 0-50% range and those in the 50-100% range. If you do that, the sheer force of irony may strike you dead:

  • 0%-50% of malware is caught by AV: 50% of all survey votes
  • 50%-100% of malware is caught by AV: 50% of all survey votes


Previous surveys and results:

Additional Resources

View Free, Relevant Gartner Research

Gartner's research helps you cut through the complexity and deliver the knowledge you need to make the right decisions quickly, and with confidence.

Read Free Gartner Research

Category: malware  security  

Anton Chuvakin
Research VP and Distinguished Analyst
8 years with Gartner
19 years IT industry

Anton Chuvakin is a Research VP and Distinguished Analyst at Gartner's GTP Security and Risk Management group. Before Mr. Chuvakin joined Gartner, his job responsibilities included security product management, evangelist… Read Full Bio

Thoughts on Anti-malware Effectiveness Perception Survey Results: Irony Strikes Back

  1. Anthony Di Bello says:

    More important question: Did you win your bet?!

  2. Yes, technically I did, but they are refusing to pay due to my faulty methodology 🙂

Comments are closed

Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.