Ну, отчет Касперского о том, что 23% россиян заклеивают веб-камеру, из той же оперы ;)
Никаких сигнатур там нет
Most security monitoring systems utilize a signature-based approach to detect threats. They generally monitor packets on the network and look for patterns in the packets which match their database of signatures representing pre-identified known security threats. NBAD-based systems are particularly helpful in detecting security threat vectors in 2 instances where signature-based systems cannot (i) new zero-day attacks (ii) when the threat traffic is encrypted such as the command and control channel for certain Botnets.
In order for NBAD to be optimally effective, a baseline of normal network or user behavior must be established over a period of time.