SecurityBrief Australia logo
Story image

CrowdStrike brings the power of signature-less machine learning to VirusTotal

29 Aug 2016

CrowdStrike has delivered the first signature-less machine learning engine to be incorporated into VirusTotal's malware scanning service, which will allow users to get more information about detected malware samples.

VirusTotal is a Google subsidiary that analyses files and URLs for free to protect against viruses, trojans, worms and other cyber threats.

CrowdStrike has been an active member in the VirusTotal community, and the latest evolution in security learning is a step in the right direction for the company.

“CrowdStrike is proud to support the VirusTotal mission and to be the first next-generation endpoint security vendor to contribute its engine to the community. Advanced prevention is a critical component of CrowdStrike’s endpoint protection platform and innovative approach that unifies next-gen AV with EDR and managed hunting," says Dmitri Alperovitch, CrowdStrike co-founder and chief technology officer.

Instead of a malware sample being subjected to a normal pass-fail routine, the new machine learning engine uses a confidence level that does not need signatures so even threats currently unknown to the cybersecurity industry can be detected.

As a result, VirusTotal provides additional insight about suspected threats. The company says the machine learning engine received 100% efficacy and 0% false positive scores on its Independent Antivirus Certification by SE Labs.

"CrowdStrike shows the broader security community they place value in being an active contributor to security practitioners within their products and services and through partnerships like this one.They keep the benefits of VirusTotal's visibility and VirusTotal users get the benefit of using an advanced detection engine. For other security vendors, the clock is now ticking to show their ability to execute by enabling their products to work with VirusTotal as well as their overall commitment to the security community at large," says Jeff Pollard, principal analyst at Forrester.

CrowdStrike's Falcon platform also uses an 'innovative' approach to endpoint detection across more than 170 countries. The company believes it is setting a good example for other cybersecurity providers.

CrowdStrike customers rely on Falcon Host for AV protection every day and we are looking forward to contributing our technology for the benefit of the community and end-users. We hope that our commitment to openness inspires other vendors to follow suit,” Alperovitch concludes.

Story image
CISOs uphold security defences throughout COVID-19, study finds
The findings from the eighth annual Information Security Maturity Report reveals the current view of security issues facing businesses across the globe, indicating that years of innovation and hard work from CISOs has upheld security defences throughout COVID-19.More
Story image
Cloud native computing adoption sees increase in security concerns
"We are at a pivot point in terms of the evolution of both the developers role as well as a transformation within the security industry as a whole."More
Story image
ThreatQuotient launches automation capability for detection and response
"The focus of ThreatQ TDR Orchestrator is data, not process. In detection and response, what is learned when performing an action is far more important than the action itself."More
Story image
Why uptime and performance are key to cloud security
The cloud has virtually infinite redundancy, storage and compute power, so why reinvent it? True cloud security should be delivered from the cloud itself.More
Story image
Why Laminar Communications is all-a-chatter about messaging app LamChat
“We built our own messaging app to ensure it connects with our server. We used open-source code where possible and the programmers are people who live in Brisbane.”More
Story image
Quest Software launches solutions for operations, protection and governance
"We are excited about this new strategic direction and believe it will deliver strong value for our global customers as they further their data-centric transformation projects."More