Nov 08, 2012
Strategy: How to Detect Zero-Day Malware And Limit Its Impact
Malware is becoming harder to detect using traditional security tools. Malware developers are increasingly using techniques such as polymorphism to make variants different enough from each other that they foil antivirus systems. Zero-day malware, by definition, is malware that isn’t recognized as a “known bad,” which puts IT administrators at a distinct disadvantage when it comes to fighting it.
Security experts recommend several techniques for battling zero-day malware, including behavioral analysis, network monitoring, situational awareness and even hardware-based security. In this report, Dark Reading looks at several categories of products that have emerged to address the zero-day malware problem, as well
as how these products and processes can complement existing antivirus deployments. We examine how zero-day malware has proliferated and how IT administrators can defend their networks from malware they’ve never seen before. (S6081112)