Feeds

Qualys crawls into the malware scanning biz

Friendly robots provide drive-by download alerts

SANS - Survey on application security programs

Qualys is inviting sys admins to sign up to a new free service, QualysGuard Malware Detection, which provides alerts about drive-by-download attacks and malicious scripts on monitored websites.

The service is based on behaviour analysis and offers automated alerts when it finds websites with rogue JavaScript, character encoding inside inline frames or malware. These alerts will identify the location of a suspicious file but typically won't name the threat. Qualys' service, launched in beta on Monday, may incorporate naming in future. This would most easily be delivered via a partnership with an anti-virus firm.

QualysGuard Malware Detection crawls monitored websites daily through a bank of virtual machines running unpatched copies of IE6 and Windows to see if anything iffy occurs. McAfee SiteMonitor and services bundled with Google and Yahoo provide surfers with site scans that are sometimes incorrect.

Chief technology officer at Qualys Wolfgang Kandek said its service would provide evidence for sys admins in challenging false positives. He described results from other malware scanning services as "uneven". Tainted ads are often a source of malware. Kandek said Qualys' service would detect if sites were serving rogue third party ads but it may not help much in pinning down which ad is at fault, a practical difficulty in several real cases we've come across in recent weeks.

Sys admins are invited to sign up for QualysGuard Malware Detection here.

Qualys is best known for its widely-used on-demand vulnerability scanning service. The malware detection service is a expansion into a adjacent area of net security and an opportunity to up-sell its new QualysGo Secure. This is a paid-for service that allows companies to check whether they are being proactive in fighting malware and other security threats on their sites and that their SSL cert is in order. Qualys Go Secure subscriptions cost a pricey $995 per web site per year. Successfully passing the Qualys audit allows firms to display a "Secure Seal".

The service is broadly similar to VeriSign's Trust Seal, which costs a more modest $299 a year, but includes SSL cert verification and a scan for web application vulns such as SQL injection bugs advent from the VeriSign service. ®

Combat fraud and increase customer satisfaction

More from The Register

next story
Parent gabfest Mumsnet hit by SSL bug: My heart bleeds, grins hacker
Natter-board tells middle-class Britain to purée its passwords
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Web data BLEEDOUT: Users to feel the pain as Heartbleed bug revealed
Vendors and ISPs have work to do updating firmware - if it's possible to fix this
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
NSA denies it knew about and USED Heartbleed encryption flaw for TWO YEARS
Agency forgets it exists to protect communications, not just spy on them
prev story

Whitepapers

Designing a defence for mobile apps
In this whitepaper learn the various considerations for defending mobile applications; from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.