FireEye Non-Signature-Based Malware Detection

FireEye has unveiled its first appliances built for in-line blocking of Web and e-mail malware using non-signature-based detection methods.

Ordinarily placed behind an organization’s Internet perimeter firewall, the three versions of FireEye’s Malware Protection System (MPS) can each detect and block inbound malware and also monitor for any outbound communications from malware, such as bots trying to contact their C&C servers.  The underlying technology that FireEye has developed makes use of a so called “virtual-machine detection method” that mirrors real-time traffic inside the MPS appliance and replays it to see if they’re compromised or attacked. 

The FireEye in-line MPS products cost from $25K to the low hundred thousands depending on the model.



Canada’s Largest Mortgage Fraud

FREE Online Hack Tutorial For Developers

Google has released a free online tutorial that gives developers the chance to play the role of malicious hacker by exploiting real security bugs in a mock web application.

The codelab is premised on a “small, cheesy web application” dubbed Jarlsberg that is chock-full of bugs that can be exploited to take down webservers, perform remote code-execution attacks, and spring information-disclosure leaks. It can be downloaded and run on a local machine to teach developers firsthand the perils of insecure coding.

The Register