The FBI will open up its Malware Investigator portal to security
researchers and others, Jonathan Burns, supervisory special agent, told attendees at the Virus Bulletin Conference in Seattle.
Agents and other law enforcement authorities will run suspicious files through the malware analysis system and through a number of anti-malware engines that record information about them.
The system can help security researchers because it provides data
important to identifying and combating viruses, including whether a file
is infected, if a virus is recognized and how well anti-viral engines
can detect it as well as source IP addresses.
According to conference information, the portal is based on the FBI's
successful Binary Analysis Characterization and Storage System (BACSS)
that provides “investigators and net defenders with technical
information about malware functionality as well as correlation so that
investigators and incident responders can 'connect dots'.”
No comments:
Post a Comment