The Inquirer-Home

McAfee buys sandboxing technology to fight zero day attacks

Sandbox runs malware to learn what impact it will have
Tue Feb 26 2013, 13:25
A McAfee logo

SECURITY FIRM McAfee has integrated sandboxing technology into its upcoming anti-virus security software that it claimed will automatically block hard to detect malware samples and unearth zero day attacks.

Announcing the news at the RSA conference in San Francisco today, McAfee said it has acquired the technology from anti-malware software firm Validedge to help broaden its software portfolio.

"The acquired technology provides advanced threat detection by running suspected malware in a 'sandbox' and learning what impact a suspected malware sample will have on an endpoint," McAfee said.

"This new technology further strengthens McAfee's current anti-malware offerings that have been proven as best in class at identifying day zero attacks."

McAfee said this new way of identifying malware attacks is unlike other forms of sandboxing technology as it will automatically block future attacks by convicted malware samples.

By integrating it with the firm's other network and endpoint anti-malware products, McAfee said the technology will also provide signature information so that already infected endpoints can be "remediated automatically" by its security management software, McAfee ePolicy Orchestrator.

Whether it really does what McAfee claimed or is just a gimmick remains to be seen. Nevertheless, McAfee said it will roll out its first security software that includes this sandboxing technology in the second half of 2013. µ

 

Share this:

blog comments powered by Disqus
Advertisement
Subscribe to INQ newsletters

Sign up for INQbot – a weekly roundup of the best from the INQ

Advertisement
INQ Poll

Heartbleed bug discovered in OpenSSL

Have you reacted to Heartbleed?