The Register® — Biting the hand that feeds IT

Feeds

Fourth anti-virus firm buys into behavioural blocking

Veni, Vedi, Avinti

By John Leyden, 14th April 2009
  • print
  • alert

Regcast training : Hyper-V 3.0, VM high availability and disaster recovery

Web and email security firm Marshal8e6 has bought behaviour-based malware detection specialist Avinti. The terms of the deal, announced Tuesday, were undisclosed.

Marshal8e6 said the deal would allow it to offer its customers improved protection against blended threats, emails that attempt to trick recipients into visiting sites loaded with malware, for example. The deal follows shortly after the merger between Marshal and 8e6 Technologies.

Adding behaviour-based detection to conventional signature-based anti-virus, as well as talk of cloud computing, are all the rage in the anti-malware world. Start-ups that sold behaviour-based protection as a supplement to traditional anti-virus, such as Okena, SecureWave and Sana Security, have been acquired by bigger firms in the security world: Cisco, PatchLink (now Lumension) and AVG, respectively, over recent months.

Last week Microsoft said it would add behaviour-based malware detection to its delayed Forefront security client. Blocking malware based on how it behaves, rather than simple recognition, makes sense. But the whole area of behaviour-based detection is mired in rival marketing claims.

Much like a football squad saying it intends to sign a Brazilian to boost its mid-field creative skills, much depends on whether the introduction meshes well with the rest of the team and delivers goods on the field, rather than talking a good game. ®

Agentless Backup is Not a Myth

COMMENTS

House Rules Send Corrections
All Reader Comments (14)
Latest Comments
Adrian Esdaile

Prefered protection rackets

How do I choose which protection racket *cough* AV firm to use? Should I use all of them? If I do, can I expect a major turf war to break out in my data?

And what kind of behaviour does it block? Root-level access, boot-block writing, that kind of thing that viruses do... OH, and so does Securom et al. as used by many BigNames(tm). We're not talking games here, we're talking major CAD & graphic design software that comes with FREE! rootkit installation...

0
0
Anonymous Coward

@jai

"microsoft - micro implies small .."

well actually Microsoft was formed at the timed when the term Micro-computer (as opposed to Mini or mainframe) was in common use. So the name was actually a good one..... then....

0
0
Anonymous Coward

Anyone else ...

Heard of a sandbox?

This is new technology?

Guys I've just invented this thing called the wheel but I can't decide what colour it should be.

(Sorry DNA for mangling the quote).

0
0

More from The Register

breaking news
Number of cops abusing Police National Computer access on the rise
Only a telegram from the Queen can get you off it
135
breaking news
NSA PRISM snoop-gate: Won't someone think of the children, wails Apple
10,000 things probed, mostly about missing kids, Alzheimer patients, we're told
96
Flash flaw potentially makes every webcam or laptop a PEEPHOLE
But it's a Google problem - Chrome only, insists Adobe
60
Internet fraud still stings suckers
Australians twice as gullible as Americans
36
breaking news
NSA PRISM-gate: Relax, GCHQ spooks 'keep us safe', says Cameron
Whatever they are up to, it's all above board, we're told
90
breaking news
Yahoo! joins! rivals! in! PRISM! data! request! admission!
Keep calm and carry on using American tech firms, folks
41
PRISM snitch claims NSA hacked Chinese targets since 2009
Snowden suddenly looks safer in Hong Kong after revelations
33
breaking news
US chief spook: Look, we only want to spy on 6.66 BEELLLION of you
Americans assured they are not in the NSA's sights
68
Speech-to-text drives motorists to distraction
Will talking to you mean I crash into that car up ahead, Siri?
30
DHS warns of vulns in hospital medical equipment
Has your doctor's anasthesia machine been hacked?
17