What Is the Difference Between a Virus and Malware?

Traditional antivirus was designed to detect viruses using known signatures. Today's threats are far broader — ransomware, trojans, fileless attacks, and info-stealers rarely behave like classic viruses. Approximately 19,000 UK businesses were hit by ransomware alone in 2025 (Sophos), and most of these strains bypass signature-based detection entirely. Modern endpoint detection and response (EDR) uses behavioural analysis instead, making 'antivirus' an incomplete description of what businesses actually need.

Yes. Info-stealers and spyware are designed to operate silently, harvesting credentials, keystrokes, and files without any visible symptoms. 22% of breaches involved compromised credentials (Verizon DBIR 2025), many stolen by malware running undetected for weeks or months. Without EDR or managed monitoring, these infections often go unnoticed until stolen credentials are used to launch a larger attack or commit fraud.

A trojan disguises itself as legitimate software and requires the user to install or open it, whilst a worm spreads automatically across networks without user interaction. Both fall under the malware umbrella alongside viruses, ransomware, and spyware. 85% of businesses that experienced a breach identified phishing as the attack vector (DSIT 2025), and phishing is the primary delivery method for trojans in particular.