Las Vegas, NV ― Black Hat ― A prominent malware detection company revealed on Wednesday that the threat intelligence industry is still in its initial phase, underscoring the need for at least 62% of global organizations to channel investments into essential tools and processes.
As outlined in OPSWAT’s report titled “2023 Threat Intelligence Trends,” a mere 22% of organizations have managed to establish fully developed threat intelligence programs. This glaring statistic underscores the discrepancy between implementation and the pressing demands of the landscape. The survey outcomes reveal a striking 68% of entities grappling with the challenges of identifying both familiar and unfamiliar malware strains.
Threat actors strategically employ malware to gain a foothold in targeted networks. Once inside, these actors navigate laterally to secure long-term access, cause damage, or steal valuable data and trade secrets. In the ceaseless battle against these perils, organizations adopt a potent strategy—harnessing actionable threat intelligence that is meticulously acquired through tools such as sandboxes and sophisticated malware analysis technologies.
“Threat intelligence plays a crucial role in safeguarding critical assets,” said Jan Miller, CTO of Threat Analysis at OPSWAT. “Understanding the evolving threat landscape empowers organizations to stay one step ahead of malicious actors, and in this rapidly changing cybersecurity landscape, it becomes the critical strategic advantage.”
Miller, an expert in file scanning with a focus on targeted environments, has recently become a vital member of the OPSWAT team. His main goal is to create a user-friendly platform that covers all the bases, including multi-scanning, sandboxing, and understanding the connections between files using machine learning techniques. With the help of artificial intelligence, this platform is set to speed up the process of identifying related samples, a key factor in quickly classifying threats and tracing their origins. Speaking to The Readable, Miller likened this innovation to a versatile “Swiss Army Knife” for the world of threat intelligence.
This explains why OPSWAT’s latest report, as Miller pointed out, includes a noteworthy survey segment on AI. The findings of the report highlight a prevailing trend of optimism towards AI, surpassing any skepticism and actual usage rates. Impressively, 56% of the surveyed organizations expressed a positive outlook on AI’s future role, while 27% maintained a more cautious stance. In terms of practical implementation, a mere 11% of organizations reported currently harnessing AI for threat detection.
Furthermore, around half of all participants in the survey highlighted that they consider phishing URLs and emails to be among their foremost worries in terms of both file types and delivery methods.
OPSWAT is developing a groundbreaking sandboxing technology, presently in the patent application stage. This novel approach employs emulation in place of the more conventional virtual machines (VMs). “This emulation-based sandbox eliminates thousands of VMs, enhancing both flexibility and visibility,” explained Miller in conversation with The Readable. This innovation is poised to deliver tangible benefits. For instance, it will provide users with valuable insights into the specific reasons why a particular file triggers a security concern, while other files remain under the radar.
“OPSWAT is committed to empowering organizations with cutting-edge cybersecurity solutions to protect critical infrastructures from emerging threats,” wrote the company in a statement to the press. “As the threat landscape evolves, OPSWAT remains at the forefront of innovation by providing the tools and knowledge to defend against increasingly sophisticated cyberattacks and stay ahead of the game.”
