home.aspx
 
. https://www.carbonblack.com/2018/11/29/partner-perspectives-notes-from-the-field-extending-carbon-black-visibility-to-undetected-malware/
blog article
PARTNER PERSPECTIVES: NOTES FROM THE FIELD: EXTENDING CARBON BLACK VISIBILITY TO UNDETECTED MALWARE
Daniel LaVoie is a Senior Solutions Specialist at ReversingLabs. On a recent customer visit, I asked the company’s Director of Security Operations how ReversingLabs came to be deployed as a part of their SOC tool set. The answer was quite interesting, and one that I wanted to share with our blog readers. The company (we’ll call them NA Bank for confidentiality) had Carbon Black deployed on their endpoints and by all measures the deployment was a great success. They had even uncovered and thwarted a recent series of malware attacks targeting the company by utilizing Carbon Black. I asked the SOC Director, “Why do you think this was a targeted attack?” She responded that the files related to the attacks were never flagged by AV as malware, and that their file intelligence feeds showed no IOCs that matched what they were tracking. In her view, this was truly unknown malware. READ MORE