Advertisment

One Billion Items of Malware Held in Kaspersky Lab’s Cloud Database

Kaspersky Lab’s cloud malware collection now carries billion malicious objects, including viruses, Trojans, backdoors, ransomware

author-image
Sidharth Shekhar
New Update
Kaspersky

Kaspersky Lab’s cloud malware collection now carries billion malicious objects, including viruses, Trojans, backdoors, ransomware, and advertisement applications and their components. A fifth was discovered and identified as malicious by Astraea - a machine-learning based malware analysis system working inside Kaspersky Lab’s infrastructure.

Advertisment

The number of cyber threats appearing every day is now so big that it is impossible to process each one of them manually. That’s why automating the malware discovery and analysis process, in combination with human expertise, is the only workable approach when it comes to fighting modern cyber threats.

The percentage of malware discovered and added automatically to the Kaspersky Lab cloud database by Astraea has been growing steadily over the last five years: from 7.53 percent in 2012 to 40.5 percent in December 2016. The proportion is growing in line with the number of new malicious files discovered daily by Kaspersky Lab experts and detection systems. This has increased from 70,000 files per day in 2011 to 323,000 per day in 2016.

“One billion unique malicious files is a remarkable milestone. It shows the scale of the cybercriminal underground, which has developed from several small forums offering customized malicious tools, to the mass production of malware and tailored cybercriminal services. It also highlights the quality and evolution of our automated malware analysis technologies. Out of these billion files, more than 200 million have been added by the Astraea machine-learning system, which is fascinating. Our advanced systems now not only detect the vast majority of known malware we get on a daily basis, but also discover the unknown threats. Although the remaining 800 million files have been added by other internal detection systems, or by experts, the contribution to the Kaspersky Lab cloud database by machine-learning systems is substantial and will continue to grow,” says Vyacheslav Zakorzhevsky, Head of Anti-Malware Team at Kaspersky Lab.

Astraea is one of the machine-learning malware analysis systems that form part of the Kaspersky Lab protection infrastructure. Astraea automatically analyzes notifications from protected computers and helps uncover previously unknown threats. By using the company’s huge database of knowledge to educate itself about how malware behaves in the real world, it creates behavior patterns and becomes able to identify unknown and sophisticated malicious programs. 

ransomware kaspersky-lab astraea
Advertisment