2nd Edition

Tracking the trends and news for IT and IT Security

Paul Davis

ReversingLabs A1000 Threat Analysis and Hunting Solution Update Drives SecOps Forward – Security…

ReversingLabs A1000 Threat Analysis and Hunting Solution Update Drives SecOps Forward – Security…>
– wordpress-plugin
ReversingLabs has announced the release of Version 8) 3 of their A1000 Malware Analysis Platform.
This update includes several new features and improvements based on customer feedback.
The key updates in A1000 Version 8) 3 are as follows:
1) Relationships Graph: A new feature that provides a visual depiction of the relationships between samples, network data, and files.
This helps enterprise Security Operations Centers (SOCs) gain a better understanding of the threats and enhances threat analysis.
2) Merging Submissions to Search: The Submissions view has been merged into the Search feature, creating a centralized page for all samples.
This improves the usability and workflow of the Search feature for SOC teams.
3) Sandbox Verdict in File Classification: The results from running a file through the RL Cloud Sandbox are now included in official file classifications.
This provides the SOC with a more informed view of the file’s dynamic analysis and aids in decision-making for mitigation.
The RL Cloud Sandbox has also received some improvements, including the addition of a Risk Score for files analyzed and enhanced URL analysis.
The Risk Score helps users quickly assess the maliciousness of a sample, and the URL analysis provides more comprehensive information about the security of URLs.
Other enhancements include the ability to download and analyze dropped files from dynamic analysis to static analysis, Linux platform support for RL Cloud Sandbox, and more descriptive explanations of processes started during dynamic detonation.
The A1000 Threat Analysis and Hunting Solution by ReversingLabs integrates static and dynamic analysis capabilities, file reputation services, visualization, automated workflows, YARA rules matching, and integration with sandbox tools.
It aligns with the MITRE ATT&CK framework and aims to minimize cyber risks, safeguard data and file privacy, and expedite investigations and response efforts.
The latest updates to the A1000 platform, including the Relationships Graph, merged Submissions view, and Sandbox verdict inclusion, demonstrate ReversingLabs’ commitment to continuously improving their solutions and addressing customers’ needs in combating malware threats.
Link: https://securityboulevard.com/2023/10/reversinglabs-a1000-threat-analysis-and-hunting-solution-update-drives-secops-forward/

Categories:

Tags: