sb-as logo
Story image

CrowdStrike brings the power of signature-less machine learning to VirusTotal

29 Aug 2016

CrowdStrike has delivered the first signature-less machine learning engine to be incorporated into VirusTotal's malware scanning service, which will allow users to get more information about detected malware samples.

VirusTotal is a Google subsidiary that analyses files and URLs for free to protect against viruses, trojans, worms and other cyber threats.

CrowdStrike has been an active member in the VirusTotal community, and the latest evolution in security learning is a step in the right direction for the company.

“CrowdStrike is proud to support the VirusTotal mission and to be the first next-generation endpoint security vendor to contribute its engine to the community. Advanced prevention is a critical component of CrowdStrike’s endpoint protection platform and innovative approach that unifies next-gen AV with EDR and managed hunting," says Dmitri Alperovitch, CrowdStrike co-founder and chief technology officer.

Instead of a malware sample being subjected to a normal pass-fail routine, the new machine learning engine uses a confidence level that does not need signatures so even threats currently unknown to the cybersecurity industry can be detected.

As a result, VirusTotal provides additional insight about suspected threats. The company says the machine learning engine received 100% efficacy and 0% false positive scores on its Independent Antivirus Certification by SE Labs.

"CrowdStrike shows the broader security community they place value in being an active contributor to security practitioners within their products and services and through partnerships like this one.They keep the benefits of VirusTotal's visibility and VirusTotal users get the benefit of using an advanced detection engine. For other security vendors, the clock is now ticking to show their ability to execute by enabling their products to work with VirusTotal as well as their overall commitment to the security community at large," says Jeff Pollard, principal analyst at Forrester.

CrowdStrike's Falcon platform also uses an 'innovative' approach to endpoint detection across more than 170 countries. The company believes it is setting a good example for other cybersecurity providers.

CrowdStrike customers rely on Falcon Host for AV protection every day and we are looking forward to contributing our technology for the benefit of the community and end-users. We hope that our commitment to openness inspires other vendors to follow suit,” Alperovitch concludes.

Story image
Creating private data regulations for employees
Whether employees are hired on a part-time or full-time basis, everyone must know about data privacy regulations. Everyone needs to be responsible for keeping the organisation’s data secure. More
Story image
Video: 10 Minute IT Jams - protecting data with user behaviour analytics
In this video, Forcepoint senior sales engineer and solutions architect Matthew Bant discusses the company's DLP solution, the importance of integrating compliance into security solutions, and why cybersecurity strategies should take a more people-based approach.More
Story image
Palo Alto Networks extends cloud native security platform with new modules
Palo Alto Networks has announced the availability of Prisma Cloud 2.0, including four new cloud security modules, thus extending its Cloud Native Security Platform (CNSP). More
Story image
BlackBerry, Microsoft enter partnership for Teams integration
"Integrating BlackBerry AtHoc will ensure that any organisation managing critical events using Teams is able to contact, alert, and account for everyone within the organisation directly."More
Story image
One in five employees download commercially sensitive files onto personal devices
Of these respondents, 40% admitted that the devices either had no password protection or no up-to-date security installed.More
Story image
BlueVoyant acquires Managed Sentinel, builds out Microsoft MSS offerings
“Combining Managed Sentinel’s Azure Sentinel deployment expertise with BlueVoyant’s MDR capabilities will help customers operationalise and maximise Microsoft security technologies."More