Forrester Wave: Lastline Enterprise Ranks Highest as "Leader" in Automated Malware Analysis

Posted by Brian Laing on 4/26/16 6:05 AM

Forrester is one of the most influential research and advisory firms in the world. One of the main ways they publish information about markets and technologies for their enterprise customers is using a methodology called The Forrester Wave™. 

Last week, they released their assessment of the APT/advanced malware marketplace, "The Forrester Wave: Automated Malware Analysis, Q2 2016." We are proud to announce that Forrester recognizes us as a leader in advanced malware analysis, detection, and protection.

 

Screenshot_2016-04-25_20.25.26.png

Read More

Topics: Lastline News, Lastline Enterprise, Forrester, Analyst Ratings

Lastline Wins Cybersecurity Excellence Award for Advanced Persistent Threat Protection

Posted by Craig Kensek on 4/22/16 4:53 PM

 

Read More

Topics: Security News, APT, Malware News

Malware News: CVE-2016-1019 Zero-Day Flash Exploit: Malware Is as Malware Does

Posted by Roger B.A. Klorese on 4/18/16 5:07 PM

(With thanks to Lastline Director of Sales Engineering Dan Mathews for the heavy lifting.)

Within the last couple of weeks, the blogosphere has reported on a new Magnitude Exploit Kit campaign, which was recently confirmed as leveraging a zero-day Flash exploitAdobe Flash Player 21.0.0.197 and earlier is vulnerable; the flaw allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, and has been observed to deliver Cryptowall 3.0 ransomware. While an earlier patch mitigated the behavior somewhat, Adobe was forced to release an emergency patch.

Read More

Topics: Advanced Malware Detection, Malware Behavior, Malware News

Visit Us at ESRM London on April 26

Posted by Craig Kensek on 4/3/16 8:00 PM

12794336_10208839111395529_6171273289718956128_n.jpg

It has been a busy first quarter for Lastline. We presented at a pair of sessions at RSA San Francisco. We won seven 2016 Global Excellence Awards® - three Gold, one Silver, and three Bronze - as well as the Grand Trophy in Info Security Products Guide's 2016 Global   Awards in March .  We promoted our leadership position in the 2015 NSS Labs Breach Detection study on a pillar at RSA.  Also, we have added an experienced security veteran to our executive team.

Read More

Topics: Lastline Labs, Deep Content Inspection, nss labs

Hey, Hey, Malware... 'Sup?

Posted by Roger B.A. Klorese on 3/31/16 5:30 AM

(Major thanks to Lastline's Co-Founder and Chief Scientist Dr. Christopher Kruegel for the "heavy lifting" including the detailed Research Note and the data analysis that supports it.)

That title may seem a bit, or even a lot, too friendly, considering that malware is certainly no friend of ours, or of you and your organization, for that matter. But we definitely do spend a lot of time with it.

We detonate and analyze a ton of malware samples daily in our cloud and on-premise at our customers in our Deep Content Inspection™ sandboxes. And periodically, we take a step back and look at the body of data, to see if we can spot any trends in how malware behavior is changing. We did this recently for the data that we collected in 2015, and observed three types of malicious behavior that increased significantly, as well as an ongoing pattern in evasive behavior.

Read More

Topics: Evasive Malware, Bank Malware, Lastline Labs, Banking Trojan, Browser Modification, Code Signing

Lateral Movement: Do You have Enough Eyes?

Posted by Dr. Giovanni Vigna on 3/22/16 10:09 AM

Sophisticated attackers can find their way into a corporate network in many ways. An attack could come from an external source, through the exploitation of a service, or by being brought in by a user whose laptop has been infected while traveling. As the network infrastructure of an enterprise evolves, its exposure to attacks evolves as well. For this reason, it is challenging to provide a comprehensive approach that will prevent all attacks: sooner or later, an attack will be successful in penetrating the enterprise network.

Read More

Topics: APT, Lateral Movement

Malware News: Android Protection to Bank On

Posted by Roger B.A. Klorese on 3/21/16 3:49 PM

Last week, banks in Australia, New Zealand, and Turkey saw the distribution of malware that steals credentials from users of their apps on Android phones and tablets, as well as intercepting the two-factor authentication codes users can receive via text message for increased security. Delivered in the guise of an Adobe Flash Player updater, the malware presents a fake login screen in advance of the real one on the banking apps, tricking users into giving up their credentials. The malware, known by some virus indexers as Android/Spy.Agent.SI, spoofs and intercepts logins for Australia's Big Four banks, as well as dozens of other financial institutions in Australia, New Zealand, Turkey, and elsewhere - Wells Fargo is one known target elsewhere. And, for good measure, it intercepts login attempts on PayPal, eBay, WhatsApp, Skype, and several Google services.

Read More

Topics: Malware Analysis, Malware in the wild, Ransomware, Malware News

Malware News: Cerber - Ransomware that Gloats

Posted by Roger B.A. Klorese on 3/14/16 6:00 AM

Last week brought us a new ransomware flavor, Cerber. Perhaps its most novel aspect is the fact that, unlike other attacks that only leave their ransom notes via text files and popup windows, Cerber also leaves a sound file and a VBscript file that lets it gloat out loud using your computer's speakers.

The good news is that our team downloaded a copy and tested it against Lastline Enterprise in multiple deployment configurations: hosted, on-premise without inter-customer malware data sharing and the anonymous VPN option, and with those options enabled. (Thanks to Director of Sales Engineering Dan Mathews for the effort.) 

Read More

Topics: Malware Analysis, Ransomware

The Art of Delivering Superior Protection against Advanced Malware

Posted by Craig Kensek on 3/7/16 4:01 PM

 

Read More

Topics: Advanced Malware Detection, Partnership, Integration, tripwire

Info Security Product Guide Awards - Seven is Our Lucky Number! (Plus the Grand Trophy...)

Posted by Roger B.A. Klorese on 3/2/16 11:45 AM


2016-GEA-Grand100x.gif

2016-GEA-Gold100x.gif2016-GEA-Gold100x.gif2016-GEA-Gold100x.gif

2016-GEA-Silver100x.gif2016-GEA-Bronze100x.gif2016-GEA-Bronze100x.gif2016-GEA-Bronze100x.gif

Lastline is proud to announce that it has been awarded a total of seven awards - three Gold, one Silver, and three Bronze - as well as the Grand Trophy in Info Security Product Guide's 2016 Global Excellence Awards.

Read More

Topics: Security News, Awards, RSA 2016

Subscribe to Email Updates