Story image

CrowdStrike brings the power of signature-less machine learning to VirusTotal

29 Aug 2016

CrowdStrike has delivered the first signature-less machine learning engine to be incorporated into VirusTotal's malware scanning service, which will allow users to get more information about detected malware samples.

VirusTotal is a Google subsidiary that analyses files and URLs for free to protect against viruses, trojans, worms and other cyber threats.

CrowdStrike has been an active member in the VirusTotal community, and the latest evolution in security learning is a step in the right direction for the company.

“CrowdStrike is proud to support the VirusTotal mission and to be the first next-generation endpoint security vendor to contribute its engine to the community. Advanced prevention is a critical component of CrowdStrike’s endpoint protection platform and innovative approach that unifies next-gen AV with EDR and managed hunting," says Dmitri Alperovitch, CrowdStrike co-founder and chief technology officer.

Instead of a malware sample being subjected to a normal pass-fail routine, the new machine learning engine uses a confidence level that does not need signatures so even threats currently unknown to the cybersecurity industry can be detected.

As a result, VirusTotal provides additional insight about suspected threats. The company says the machine learning engine received 100% efficacy and 0% false positive scores on its Independent Antivirus Certification by SE Labs.

"CrowdStrike shows the broader security community they place value in being an active contributor to security practitioners within their products and services and through partnerships like this one.They keep the benefits of VirusTotal's visibility and VirusTotal users get the benefit of using an advanced detection engine. For other security vendors, the clock is now ticking to show their ability to execute by enabling their products to work with VirusTotal as well as their overall commitment to the security community at large," says Jeff Pollard, principal analyst at Forrester.

CrowdStrike's Falcon platform also uses an 'innovative' approach to endpoint detection across more than 170 countries. The company believes it is setting a good example for other cybersecurity providers.

CrowdStrike customers rely on Falcon Host for AV protection every day and we are looking forward to contributing our technology for the benefit of the community and end-users. We hope that our commitment to openness inspires other vendors to follow suit,” Alperovitch concludes.

ESET researchers break down latest arsenal of the infamous Sednit group
At the end of August 2018, the Sednit group launched a spear-phishing email campaign, in which it distributed shortened URLs that delivered first-stage Zebrocy components.
Container survey shows adoption accelerating while security concerns remain top of mind
The report features insights from over 500 IT professionals.
Google 'will do better' after G Suite passwords exposed since 2005
Fourteen years is a long time for sensitive information like usernames and passwords to be sitting ducks, unencrypted and at risk of theft and corruption.
Who's watching you? 
With privacy an increasing concern amongst the public, users should be more aware than ever of what personal data companies hold.
Fake apps on Google Play scamming users out of cryptocurrency
Fake cryptocurrency apps on Google Play have been discovered to be phishing and scamming users out of cryptocurrency, according to a new report from ESET.
Managing data to comply with privacy regulations - Micro Focus
It’s crucial for organisations to be able to access, understand, and accurately classify the data they have so they know how to treat it.
Hackbusters! Reviewing 90 days of cybersecurity incident response cases
While there are occasionally very advanced new threats, these are massively outnumbered by common-or-garden email fraud, ransomware attacks and well-worn old exploits.
SEGA turns to Palo Alto Networks for cybersecurity protection
When one of the world’s largest video game pioneers wanted to strengthen its IT defences against cyber threats, it started with firewalls and real-time threat intelligence from Palo Alto Networks.