Prevx Blog
Real-World Example of In-the-Cloud Technology
Posted by: Marco Giuliani
We recently came across one of the best results so far of our new community protection while we were monitoring the spread of a variant of the Conficker worm. This worm has overloaded the local networks of many companies and a variant of this worm, also known as Downadup, has lately been the topic of many media articles.
This variant started spreading during the last week of December, which is the best period a malware writer could choose to spread their creature because of many security companies having at east some of their staff on holiday.
We received an alarm of possible new widespread malware coming from our monitoring services, showing Edge consistently blocking a strange new infection.
The worm was, at that time, almost undetected by most security companies and now, after even two weeks, we're still seeing many press releases showing the isolation, analysis and detection of this variant.
While we agree the worm has been complicated to analyze because of obfuscated code and because of the number of PCs it succesfully infected, we must underline how our in-the-cloud technology has been able to intercept and block this new infections weeks before other security companies even isolated it.
Since the first release of this new infection, Prevx Edge has heuristically blocked every variant. Our analysis later added a signature but before this, all of our Edge users were completely protected the instant that the threat surfaced.
The malware authors behind Conficker wrote in code to explicitly block the Prevx website from infected computers. This shows us that we're doing something right! Our database was able to automatically determine the intent of the Conficker worm and variants, showing that centralized, community threat analysis is not only a useful tool, but a necessary part of complete computer security.
3 comments so far
- amy on Mar 31 13:33, 2009
- Linda A on Apr 4 1:28, 2009
Just goes to show you how great Prevx is!! As an instructor of computer science and repair, and a current repair certification holder, Prevx is the only company I recommend to my students and customers. And the only company I trust to have on my personal computers.
I , or my customers, have used everything out there to protect and/or debug their computers. Prevx is the answer to their woes. I installed it on 3 customers computers, 2 already were infested. The infestation lasted a short time due to prevx's way of removing the threat, not to mention the "hangerson". Thanks Prevx you have saved my ears, my voice and my tires to go over and terminate them little buggers.
I read the emails shoing the infestations, and after 4-7 days, no more bugs, no more emails. Have heard not a peep from my customers. Unless you consider using the cd tray as a cup holder. But, I don't think Edge 2 can help with that.
Great product, easy to use even for the trully inexperience user.
Nice to see that Prevx is on top of it and how well Edge is securing all that are smart enough to purchase it.