You can earn points while testing SecureAPlus APEX (Beta) to increase your chances of winning a reward.

Here are the 8 ways you can earn points during the Beta:

Updated Points System

Daily Scans

Beta testers can earn points every day for using APEX, by performing File & Folder/On-Demand scans as shown below:

2 points will be awarded daily for performing at least one File & Folder/On-Demand scan. More points can be earned each day by performing scans on multiple devices with SecureAPlus that are associated to your Beta account, up to a maximum of 10 points per day (i.e. 5 devices).

To qualify for points under Daily Scans, the following criteria must be satisfied:

  • Files scanned are to done via File & Folder/On-Demand Scanning. Please note that files scanned with the Full System Scan are not counted towards your total files scanned because the APEX scanner is currently not included in the full system scan.
  • At least one executable file (PE file format) must be scanned.

Unique Files Scanned

Only the Top 10 beta testers with the most number of unique* executable files scanned will be awarded points at the end of the beta.

To qualify for these points, the following criteria must be satisfied:

  • Files scanned are to done via File & Folder/On-Demand Scanning. Please note that files scanned with the Full System Scan are not counted towards your total files scanned because the APEX scanner is currently not included in the full system scan.
  • At least one executable file (PE file format) must be scanned.
  • Internet access is required as the files can only be determined as unique by checking with our servers
  • You must log in to your SecureAPlus account on the device with the SecureAPlus Beta via the main console at least once** during the Beta in order for us to track the number of unique executable files scanned by your device.

* Unique files are determined per user. 

** If a user has multiple devices with the Beta Client, each will require a login in order for the files scanned by the on-demand scanner to be counted towards the beta submission total

The number of unique files scanned by the Beta users will be shown on the Beta section of the SAPPortal. Do note that this number will only update once every 24 hours.

False Positives / False Negatives Submission

False Positives (FP) / False Negatives (FN) are executable files (PE files) that APEX wrongly detects. Specifically:

  • False Positives are clean files that APEX detects as malware;
  • False Negatives are malware that APEX detects as clean;
  • Non-PE (Portable Executable) files such as .msi installers, scripts, and documents are currently unsupported by APEX. Please do not submit non-PE files.

If you encounter any FP/FN samples during scans, please follow the instructions below to submit the samples:

  1. Archive all FP and all FN separately into zip files (using zip/7z/rar). Maximum File Size for each zip is 100 MB
  2. Use of the standard password “infected” is optional.
  3. Submit each archive separately by uploading them to the SecureAPlus Account Portal

2 points will be awarded per valid submission, up to a maximum cumulative total of 100 points for FP submissions, and 100 points for FN submissions. Submitted file samples from the previous phase will automatically be included in this phase for scoring. 

Points may take up to 7 working days to be awarded as developers will require time to test, reproduce and make the assessment.

In addition, the top 10 beta testers with most verified FP/FNs will be awarded points at the end of the beta.

Fileless Attack Submissions

Fileless Attacks are an increasingly prevalent means of intrusion, characterized by the lack of file footprints on disk memory. Such attacks completely evade file-based antivirus scanners, but SecureAPlus has the capability to block these attacks.

A non-exhaustive list of fileless attack vectors include:

  • PowerShell
  • Windows Management Instrumentation
  • Legitimate Windows executable files

If you encounter any fileless attacks that evade SecureAPlus’s defenses, please follow the instructions to submit your report:

  1. Run a fileless attack that SecureAPlus fails to block
  2. Document the steps to replicate this attack and submit them to SecureAPlus Account Portal
    • If the steps are straightforward, simply fill it in the Remarks box
    • Otherwise, save the steps in a document file and archive it (zip/7z/rar), along with any other supporting files

To qualify for points, the following criteria must be satisfied:

  • The report needs to contain sufficient information for us to reproduce the attack
  • Malicious scripts are not stored as files on disk, i.e. we do not accept raw Javascript/VB file
  • SecureAPlus fails to detect the attack

Points may take up to 7 working days to be awarded as developers will require time to test, reproduce and make the assessment.

WSL Submissions

Windows Subsystem for Linux (WSL) attacks exploit the WSL component of Windows 10 in order to breach the system. An example of such an attack is Bashware.

If you encounter any WSL attacks that evade SecureAPlus’s defenses, please follow the instructions to submit your report:

  1. Run a WSL attack that SecureAPlus fails to block
  2. Document the steps to replicate this attack and submit them to SecureAPlus Account Portal
    • If the steps are straightforward, simply fill it in the Remarks box
    • Otherwise, save the steps in a document file and archive it (zip/7z/rar), along with any other supporting files

Points may take up to 7 working days to be awarded as developers will require time to test, reproduce and make the assessment.

Bug Reports / Suggestions

You can submit a report of a bug discovered or suggestions to improve while using the latest version of the SecureAPlus Beta software through the portal.

The submissions should be as detailed and as helpful as possible to ensure that our team can recreate and resolve the bug.

Do note that The SecureAPlus team reserves the right to award points to submitted bug reports. We will grant points to unique bug reports but will also generally grant points to helpful posts that add value to existing and unresolved bug reports. Submitting a bug report that has already been resolved will not be granted points. Up to 20 points will be awarded for bug reports; up to 10 points will be awarded for suggestions.

Points may take up to 7 working days to be awarded as developers will require time to test, reproduce and make the assessment.

Surveys

During the beta, new surveys will be periodically released (start and end of each phase) to all testers.

Points will only be awarded at the end of each phase.

Beta Testers Referrals

Invite another user to become a Beta Tester. As soon as the referred Beta Tester starts testing and earning points, you will be credited for the referral and earn some points.

You can only refer up to 5 other beta testers.