Check Point® Software Technologies Ltd. (NASDAQ: CHKP), a leading provider of cyber security solutions globally, has introduced a new artificial intelligence-based malware detection engine to its SandBlast Network threat prevention solution, to enable even faster, more accurate prevention of malicious attacks. The new Malware DNA engine classifies new forms of malware into known malware families, accelerating the ability to identify and block zero-day threats before they can cause any damage.
Malware DNA scans each malware variant that passes through the Check Point SandBlast Network sandbox to find code patterns and behavioral similarities that match existing, known malware families. As the overwhelming majority of malware is built using existing blocks of malicious code, Malware DNA accelerates identification of new, previously undiscovered malware and reduces response times to further strengthen organizations’ security postures.
Malware DNA’s AI and machine-learning processes are supported by intelligence on the millions of malware samples already detected by Check Point’s ThreatCloud, the world’s largest threat intelligence resource. The new engine augments SandBlast Network’s detection, inspection and safe content delivery capabilities to deliver complete protection against the most dangerous zero-day and targeted attacks on enterprise networks.
“For hackers, reusing existing code that is already proven to work saves them time and effort, so the overwhelming majority of malware is created this way. The lines of code that make up malware are the DNA of cyber-threats, and the new Malware DNA engine enables the code used in even brand-new malware to be quickly matched to existing families of threats,” said Maya Horowitz, Head of Threat Intelligence Research at Check Point. “By quickly tracing the origins of even new, zero-day threats, response times are accelerated even further, dramatically reducing the risks to organizations. Malware DNA is a great example of Check Point’s relentless focus on developing and providing the most advanced threat prevention technologies.”
SandBlast Network is a complete network threat prevention solution. It detects evasion-resistant malware to keep organizations’ networks threat-free, and ensures shared content is safe to use throughout your organization, maximizing users’ productivity. SandBlast Network is an integral component of Check Point’s fully consolidated cyber security architecture, Infinity, which protects all facets of modern IT, including the network, endpoints, cloud, and mobile. It uses real-time threat intelligence from Check Point’s ThreatCloud knowledge database to continually monitor for threats across all platforms through a single pane of glass.
NSS Labs, a globally recognized and trusted source for independent, fact-based cybersecurity testing, gave a ‘recommended’ rating to Check Point’s SandBlast solution for detecting 100% of HTTP and email threats, and 100% of malware using sophisticated evasion techniques, while giving zero false positives. Check Point has been awarded 18 ‘Recommended’ ratings since NSS Labs began testing its solutions in 2010, further validating Check Point’s ability to protect organizations against even the most advanced cyber-attacks.
Follow Check Point via: