Its multiple choice what did they say
Answer:
Antivirus vendors play a 'cat and mouse' game with malware creators. As malware is discovered definitions are written to discover the program and other programs written in a similar way. If an existing piece of malware is extensively rewritten or a new piece of malware is created, the existing malware definitions are unlikely to detect the program as malicious. This means that antivirus vendors have to find a 'sample' of the new malware being used and create a new definition for it. When you update your anti-virus these malware definitions are downloaded allowing your antivirus to detect this newer malware and keeps your computer secure from these newer threats.
Netflow and IDS (intrusion detection system) are the two tools used for incident detection can be used to detect anomalous behavior, to detect command and control traffic, and to detect infected hosts.
The Netflow is CISCO feature used for collecting IP traffic information and monitoring network traffic on a specific interface. Similar to this, IDS is an a<span>pplication that monitors a network or systems for malicious activity or policy violations.</span>
