Hardware-level cryptojacking detection for Intel PCs
The BlackBerry Optics v2.5.1100 leverages unique CPU telemetry from hardware-based Intel Threat Detection Technology (Intel TDT) to provide enterprises and small and medium-sized businesses “unparalleled” detection of cryptojacking attempts – i.e., malware that hides on a device and steals its computing resources in order to mine cryptocurrencies like Bitcoin. With virtually no processor impact and easy configuration, says the company, organizations can detect and mitigate cryptojacking with greater precision and consistent results across all types of workloads executing on Windows 10 operating systems.
Many cryptojacking operations will utilize small quantities of power from many different machines to create a pool of processing power – a technique that makes large corporations and businesses an ideal target for easy infection of multiple machines once access is gained. According to a recent Verizon 2020 Data Breach Investigations Report, “around 10% of organizations received (and blocked) cryptocurrency mining malware at some point throughout the course of the year.”
“Given the cost associated with mining cryptocurrency and the payments of ransomware demands on the decline, cryptojacking becomes an attractive option for threat actors to generate revenue,” says Josh Lemos, VP, Research & Intelligence. “With our new cryptojacking detection and response capabilities, we’re looking to make this practice a thing of the past, providing enterprises and their employees with a turn-key solution that will enable them to thwart cryptojacking attempts and ensure their software and hardware are used for their intended purposes. The days of exploiting unsuspecting users for free CPU time are over.”
This release of BlackBerry Optics integrates the Intel vPro threat detection technology driver and machine learning model. Intel Threat Detection Technology capabilities include Accelerated Memory Scanning – where scanning is handled by Intel’s integrated graphics processor, enabling more scanning while reducing the impact on performance and power consumption – and Advanced Platform Telemetry, which combines platform telemetry with machine learning algorithms to improve the detection of advanced threats, while reducing false positives and minimizing performance impact.
The raw data that Intel TDT analyzes for detection purposes is used to help identify polymorphic malware, file-less scripts, cryptomining, and other targeted attacks—in real time, and with minimal end-user impact.
Stephanie Hallford, Intel Vice President of the Client Computing Group and General Manager of Business Client Platforms says, “As hackers use more sophisticated tactics to bypass detection, it’s more important than ever to have built-in hardware security features. Building on top of the built-for-business Intel vPro platform, enabled by Intel Hardware Shield, BlackBerry takes advantage of hardware visibility to offer advanced security protection, and we applaud them for this release.”
Related articles:
Cryptocurrency malware attack on SCADA network discovered
Is your motherboard hacked?
China mulls ban on crypto mining
Bitcoin crypto miner uses Samsung 10nm chipset
If you enjoyed this article, you will like the following ones: don't miss them by subscribing to :
