Get Invincea’s Free Research Edition

There are very few new technologies in the market that are poised to make a substantial impact on how endpoints can remain protected in an ever-changing world of malware. Antivirus is essentially useless. Firewalls and intrusion prevention systems are pretty much useless as well- firewalls still allow enough connectivity to allow exploits and an IPS has to rely on signatures, just like antivirus. But Invincea is like the Honey Badger. It doesn’t give a damn. If anything is detected to change on your endpoint from your web browsing, whether it is malicious java, injected overflows in the browser, flash or silverlight exploits- it will allow you to reset back to normal, but first it captures everything that happened, and that intelligence can be used to understand new threats in the wild. If you are in the infosecurity community you can get a free research version of Invincea to help crowd-source this intelligence gathering.

I used it today and gleefully watched my system get compromised by the new RIG exploit kit. Many of these injected executables have little to no detection on Virus Total. But one look at the event tree above, and you can see all of the various ways this kit dropped its exploits. This all happened from a compromised wordpress blog which redirected me to a flash overrun. Thanks to MalwareTrafficAnalysis for the PCAP of the RIG EK.

So get your copy and be protected.