ATLANTA--(BUSINESS WIRE)--Damballa, the experts in advanced threat protection and containment, today announced that Terry Nelms, Director of Research, will present a new incident investigation system in a presentation titled, “WebWitness: Investigating, Categorizing, and Mitigating Malware Download Paths” at the 24th USENIX Security Symposium, taking place August 12-14, at the Hyatt Regency in Washington DC.
Most modern malware download attacks occur via the browser, typically due to social engineering and drive by downloads. In developing the system, Nelms and his team investigated the “origin” of malware download attacks experienced by real network users. He shares the methodology used to identify the web paths followed by users who fall victim to malware downloads. Nelms also presents a new incident investigation system, called WebWitness, that automatically traces the sequence of events a user takes preceding a malware download, so security teams can better understand attack trends and mitigate potential malware infections.
The full agenda can be found at: https://www.usenix.org/conference/usenixsecurity15/glance
| WHAT: | Session: “WebWitness: Investigating, Categorizing, and Mitigating Malware Download Paths” | |
| WHEN: | Friday, August 14, 4:00PM – 6:00PM | |
| WHO: | Terry Nelms, Director of Research, Damballa | |
| WHERE: | Hyatt Regency, Washington, DC | |
About Damballa
As a leader in automated breach defense, Damballa delivers advanced threat protection and containment for active threats that bypass all security prevention layers. Born for breach defense, Damballa rapidly discovers infections with certainty, pinpointing the compromised devices that represent the highest risk to a business, and enabling prioritized response and refocusing of security experts to the areas of greatest risk to an enterprise. Our patented solutions leverage Big Data from one-third of the worlds Internet traffic, combined with machine learning, to automatically discover and terminate criminal activity, stop data theft, minimize business disruption, and reduce the time to response and remediation. Damballa protects any device or OS including PCs, Macs, Unix, iOS, Android, and embedded systems. Damballa protects more than 400 million endpoints globally at enterprises in every major market and for the world's largest ISP and telecommunications providers. For more information, visit www.damballa.com, or follow us on Twitter @DamballaInc.