GFI SandBox™ Enhances AV-Comparatives’ Malware Analysis

June 14, 2011 - 12:00

Antivirus testing organization uses GFI SandBox to assess the behavior and potential threat of suspected malware within a controlled analysis environment

The Advanced Technology Group (ATG) of GFI® Software today announced that AV-Comparatives, an independent antivirus software testing organization, has deployed GFI SandBox to strengthen its malware detection and analysis capabilities. The addition of GFI SandBox to its threat detection arsenal enhances AV-Comparatives’ ability to identify malware it can use for antivirus software testing purposes, as well as to better defend itself from malware attacks.

“GFI SandBox is a trusted, preferred tool for security professionals who need to quickly and safely analyze suspected files for malicious behavior,” said Chad Loeven, vice president, Advanced Technology Group, GFI Software. “This can range from familiar exploits on known vulnerabilities to sophisticated, custom malware attacks targeting individual corporations or government agencies to steal credit card numbers, passwords, trade secrets or other sensitive information. As a preeminent antivirus tester and high-profile security advocate, AV-Comparatives is using our sandbox technology to constantly sample potential malware, as well as to defend itself from cybercriminals determined to compromise its systems.”

“GFI SandBox provides AV-Comparatives with further validation and stronger confidence when testing and analyzing suspected malware,” said Andreas Clementi, chairman, AV-Comparatives. “We added GFI SandBox to our labs because it provides in-depth information and detailed reporting for all samples, and for its versatile support of multiple operating systems. Staying ahead of the latest malware threats is not only key to ensuring our antivirus testing criteria remains strong, but it also augments our own internal security practices.”

GFI SandBox is an industry leading analysis tool that helps security professionals assess suspected malware and its potential threat within a controlled, monitored environment. GFI SandBox enables users to see how potential malware applications execute, what system changes they will make and what network traffic they attempt to generate without risking actual loss of data or compromising a network. GFI SandBox is used by government and defense agencies, as well as large enterprises like financial institutions to identify and defend against targeted attacks on their systems.

Specialized Solutions for Threat Analysis and Defense
GFI’s Advanced Technology Group (ATG) is backed by the extensive research capabilities and proprietary technologies developed by GFI Labs, the company’s research and analysis division. ATG markets and licenses GFI’s threat analysis and malware detection technologies to large enterprises, and government and defense agencies with uniquely sensitive and demanding IT security requirements; as well as to software developers and hardware manufacturers whose products require proven, embedded security solutions.

In addition to GFI SandBox, ATG’s specialized threat analysis and defense solutions include:

GFI ThreatTrack™ – Continuously updated data feeds generated by GFI’s extensive partner network and internal research provide subscribers with the latest malicious websites, IP addresses and malware. ThreatTrack users proactively identify and defend against harmful URLs, emails and other Internet traffic threatening their network. ThreatTrack is available as a stand-alone data feed, or it can be licensed for inclusion in third-party security products or as an add-on service with GFI SandBox.

GFI VIPRE® Antivirus SDK – A powerful, best-of-breed antimalware Software Development Kit (SDK) that enables OEM partners, ISVs, service providers and enterprises to integrate the VIPRE Antivirus engine into their products or custom applications developed for internal use. The VIPRE Antivirus SDK is available for Windows desktop applications and gateway appliances defending the network.

About GFI
GFI Software provides web and mail security, archiving, backup and fax, networking and security software and hosted IT solutions for small and medium-size businesses (SMBs) via an extensive global partner community. GFI products are available either as on-premise solutions, in the cloud or as a hybrid of both delivery models. With award-winning technology, a competitive pricing strategy, and a strong focus on the unique requirements of SMBs, GFI satisfies the IT needs of organizations on a global scale. The company has offices in the United States (North Carolina, California and Florida), UK (London and Dundee), Austria, Australia, Malta, Hong Kong, Philippines and Romania, which together support hundreds of thousands of installations worldwide. GFI is a channel-focused company with thousands of partners throughout the world and is also a Microsoft Gold Certified Partner.