Sandbox - Security Intelligence

Frustrated businessman rubbing his forehead in front of a computer.

news

Infection Immunity: Has Banking Trojan Emotet Outsmarted Itself?

The Emotet banking Trojan is making a comeback with new features and functions — but has the malicious code outsmarted itself?

November 16, 2017 | By Douglas Bonderud

news

Toy shovels and a toy truck in a sandbox.

article

Using a Free Online Malware Analysis Sandbox to Dig Into Malicious Code

A public malware sandbox can be a great substitute for an in-house malware analysis solution — as long as you understand its limitations.

August 28, 2017 | By Koen Van Impe

article

Mobile device management is designed to make all devices throughout an organization more secure. Unfortunately, a recently discovered iOS sandbox vulnerability could leave users exposed and put critical information at risk unless a patch is applied.

news

iOS Sandbox Vulnerability Threatens Enterprise MDM Castles

Once considered a bastion of mobile security, Apple has come under fire in recent months. Now, a new iOS sandbox vulnerability has emerged.

August 27, 2015 | By Douglas Bonderud

news

Signature-based malware detection is possible with YARA, but before this language tool can be implemented effectively, security professionals must create or identify appropriate rules for their priorities and then apply them for threat protection.

article

Signature-Based Detection With YARA

Security researchers on the lookout for another resource to help with malware detection should consider the pattern-matching tool YARA.

June 24, 2015 | By Koen Van Impe

article

The use of malware analysis sandboxes can be a major advantage for cybersecurity professionals in many different industries. These tools give experts the chance to observe how malware behaves and come up with ways to combat it.

article

Comparing Free Online Malware Analysis Sandboxes

Free malware analysis sandboxes can be used as a means of enhancing cybersecurity without a major drain on time, money and other resources.

June 1, 2015 | By Koen Van Impe

article

The Tinba malware is using APIs to track user movements and evade detection in sandboxes. This ability, combined with the malware's small size, could lead to it infecting devices connected to major financial institutions with sensitive information.

news

Tinba Malware Watches Mouse Movements, Screen Activity to Avoid Sandbox Detection

Security researchers found that the Tinba malware is no longer relying on its small size as the only way to avoid detection from sandbox technology.

May 13, 2015 | By Shane Schick

news

article

A Peek into IE’s Enhanced Protected Mode Sandbox

IE 10 Enhanced Protected Mode (EPM) sandbox research that was presented at Hack in the Box 2013 and the Black Hat Asia 2014 security conferences. Summary of findings and discussion of the most important points and related resources to find out more...

April 8, 2014 | By Mark Yason

article

Diving Into IE 10’s Enhanced Protected Mode Sandbox at Black Hat Asia 2014

If you’re using Internet Explorer in immersive mode on Windows 8/8.1 to browse Internet web sites, under the hood, your browser will be running inside the Enhanced Protected Mode sandbox. Enhanced Protected Mode (EPM) is the sandboxing mechanism...

March 19, 2014 | By Mark Yason

article

Application Sandboxing Makes Exploiting Vulnerabilities Less Profitable

Sandboxing isn’t a new concept; it’s been used in various forms for some time. Application sandboxes add one more layer of defense in the struggle to regain the right to peaceful enjoyment in our own networks.

January 20, 2014 | By Chris Poulin

article

Diving Into IE 10’s Enhanced Protected Mode Sandbox at HITB 2013

With the release of Internet Explorer 10 in Windows 8, an improved version of IE’s Protected Mode sandbox, called Enhanced Protected Mode (EPM), was introduced. With the use of the new AppContainer process isolation mechanism introduced in Windows...

October 10, 2013 | By Mark Yason

article

Tag: Sandbox