Fighting Sandbox-Evading MalwareVerizon's Ashish Thapar Shares Tips and Techniques
Malware detection needs to shift to detecting anomalous behavior, rather than depending on signature-based detection technologies to deal with such threats as sandbox-evading malware, says Verizon's Ashish Thapar.
See Also: AI's Impact on SOC Maturity
Sandbox-evading malware detects when it's being analyzed in a sandbox and shuts down and stays dormant, he explains. "That's why it's important that when we do reverse engineering, we look at both dynamic and static analysis," he says.
In this video interview at the recent RSA APJ 2018 conference in Singapore, Thapar discusses:
- The ins and outs of the malware landscape;
- Common malware detection mistakes;
- How to effectively fight polymorphic/sandbox-evading malware.
Thapar is the managing principal, risk services - APJ, at Verizon Enterprise Solutions. His experience includes designing, implementing and managing information security management systems for organizations.