Modern malware defense
Thursday, 28 April 2011 23:29

Ashar Aziz, founder of FireEye, recognized early on that custom malware, zero day threats, and drive by downloads could all slip by common defenses that most organizations have deployed (firewals, IPS, AV).    He built the technology needed to take all executables off the wire, and essentially unpack  and run them in a mini-cloud of virtual emulators on a hardware appliance.  By looking at what the software does in its intended environment (usually Windows) FireEye can determine if it is malicious or not and then allow it through or block it.

Over a year ago, FireEye added beaconing detection to its appliance. This has been the key to their recent fast track growth.  Once installed on a customer's network they invariably discover preveously downloaded malware attempting to "phone home" to command and control servers.  The customers get the immediate value of discovering those infections and the ability to prevent future downloads of what Ashar calls modern malware.

Watch my interview with Ashar Aziz to learn more about FireEye.

Dim lights Embed Embed this video on your site

 

Comments
Add New Search
Name:
Email:
 
Website:
Title:
UBBCode:
[b] [i] [u] [url] [quote] [code] [img] 
 
 
:angry::0:confused::cheer:B):evil::silly::dry::lol::kiss::D:pinch:
:(:shock::X:side::):P:unsure::woohoo::huh::whistle:;):s
:!::?::idea::arrow:
 
Please input the anti-spam code that you can read in the image.

3.26 Copyright (C) 2008 Compojoom.com / Copyright (C) 2007 Alain Georgette / Copyright (C) 2006 Frantisek Hliva. All rights reserved."
 
Copyright © 2009 ThreatChaos.com. All Rights Reserved