Share, , Google Plus, Pinterest,


Posted in:

The Current State of Advanced Malware Protection

Current state of malware protection still rely mostly on signatures. The near future state needs to incorporate advanced AI in multiple features like crypto, beaconing, and anti-forensics.

The malware samples that are flying under the radar of the security solutions are more than those detected. Advanced Malware Protection must incorporate AI/ML paired with expert analysis.

Advanced detection techniques can no longer rely on signatures or IOCs that bypass legacy antivirus engines. Defenders must assume breach and hunt malicious actors on their networks to identify and expel threats before they cause damage and loss.

Currently, security teams are limited by standard security analytics and incident response processes. Advances in machine learning will automate threat intelligence, make stronger connections between malicious events, and resolve incidents faster.

The current state of Advanced Malware Protection is poor. Many companies have been led to believe marketing hype, and are still being infected. The main reason is attacks are able to bypass security solutions fairly easily.

Post WannaCry and Petya, malware prevention technology should become more resilient and combine with advanced real-time behavioral analytics for network situational awareness with a comprehensive standards based cyber-security assessment.