Kernel Rootkit Analysis with Lastline Breach Detection Platform 6.5
Today at SXSW Interactive, Lastline co-founder and chief architect Engin Kirda presented new insights into malware in the wild including new research coming out of Lastline Labs on high resolution dynamic analysis of Windows kernel rootkits. We also announced today a new analysis capability in the 6.5 release of the Lastline Breach Detection Platform that provides unprecedented insights into this pernicious type of malware hidden in the kernel of Microsoft Windows operating systems.
By adding the industry’s first capability for automated and deep analysis of kernel behavior and rootkit detection to the Lastline Breach Detection Platform, we will help customers better detect and respond to kernel-based threats with enhanced, in-depth analysis. This kernel-mode analysis capability adds to existing network-based detection of kernel components in the platform.
Lastline Breach Detection Platform analysis report of kernel-based malware Turla that is suspected to be state-sponsored and used to attack governments and military targets. (View Full-size)
Latest posts by Brian Laing (see all)
- Tracking the Evolution of Organizations’ Email Threat Defenses - September 4, 2019
- How to Take Account Takeover Fraudsters Out to the Curb - August 15, 2019
- Can You Hack My Network? Why Ethical Hacking is Essential for Improving Your Security - July 18, 2019