BluVector expands real-time detection of fileless malware on the network

BluVector announced the latest version of BluVector Cortex, the company’s platform, capable of sensing and responding to threats in real-time.

This latest upgrade focuses on further innovation within the platform’s network-based fileless malware detection, offering the ability to detect the range of fileless attacks and automatically block these threats through its partner ecosystem.

“BluVector Cortex continues to evolve ahead of the industry with the expansion of its real-time detection of zero-day fileless malware on the network, providing the greatest breadth of fileless coverage and the only solution that empowers threat analysts with targeted logging surrounding a fileless event,” said Kris Lovejoy, CEO, BluVector.

The company also leverages its partner alliances, including a partnership with Carbon Black, to offer a solution on the market, capable of providing automated protection from fileless malware.

“As cybercriminals continue to evolve, we’ve seen an increase in fileless attacks,” said Jim Raine, Director of Technology Alliances, Carbon Black.

“By combining BluVector and Carbon Black, customers are able to achieve end-to-end, immediate protection from advanced threats.”

Enhancements to BluVector Cortex includes new features that expand detection coverage, improve the investigation and response workflow and further scalability.

New features and enhancements include:

• PowerShell detection – In addition to its existing coverage of JavaScript- and VBScript-based attacks, BluVector now also supports the analysis of PowerShell scripts in network traffic, identifying potential zero-day attacks before they have the chance to cause damage.
• Fileless script capture and context – Access to the actual scripts and related network traffic from a fileless attack all in one place enables an organization to investigate and even reverse-engineer a threat without the need for expensive full packet capture.
• Advanced threat investigation – Today’s threats often make use of multiple stages and threat vectors, which can make investigation a manual process. Enhanced search capabilities and new filters simplify and automate this correlation process, allowing analysts to understand if an event was a standalone incident or part of a larger attack.
• 20G form factor – Support for environments makes BluVector Cortex the solution capable of detecting file-based and fileless malware in real-time on enterprise- and data center-grade networks.