Opswat has acquired the Sndbox sandboxing technology that helps ferret out and stop malware that can hide from traditional sandbox analysis.
Itay Bochner, director of malware analysis solutions at Opswat, said the purchase would help improve Opswat’s critical infrastructure protection for customers.
“Sndbox’s cutting-edge dynamic analysis technology will integrate with and enhance Opswat’s MetaDefender platform and malware analysis solution to enable organisations to secure their IT and OT environments,” Bochner said in the official announcement.
Sndbox has become the top malware analysis sandbox solution for organisations tasked with managing critical infrastructure, he said, since it was launched in December 2018 at Blackhat Europe as an AI-powered malware analysis site — www.sndbox.com.
A year later, Sndbox was integrated with IBM Resilient.
According to IBM’s Ran Dubin and Ariel Koren, the integration enabled users of both platforms to enrich their incident response and security pipelines with unique kernel mode analysis technology and AI malware detection.
Opswat’s Bochner said the joint solution would boost automation of malware analysis, enriching other intelligence systems, and “bringing greater confidence” to security and operational teams.
“Sandbox technology plays a critical role in day-to-day security operations by providing an isolated execution environment, allowing analysts to detonate potentially malicious software and study how it behaves,” he wrote.
Malware can sometimes “recognise” when it is running in a sandbox environment, and thus withhold certain commands until launched in a targeted application, system or platform — thus evading sandbox analysis, Bochner explained.