Zero-Day Anti-Malware
The Network Box Z-Scan anti-virus engine operates by continually analyzing all threat information that is received by the company’s proprietary Network Box Security Response system, which includes spam traps, virus traps, in-house submissions, customer submissions, mail statistics, HTTP statistics, and suspect samples. This is done 24 hours a day, seven days a week, 365 days a year.
Traditional anti-virus technologies focus on recognizing the threat, identifying it and then stopping it. That entire process can take between 4 and 12 hours. Hackers know this and are taking advantage of it by flooding the Internet with at least 40,000 new pieces of malware per day.
Our anti-virus engine reduces the time it takes for companies to respond to serious new Internet threats – cutting response times down from hours, which is common throughout the anti-virus industry, to less than 60 seconds; no other security provider can match this.
Z-Scan also takes an innovative approach based on statistical observations – using a fully automated process to create and release signatures, thus reducing the cycle to just seconds.
This information is used to determine that a particular object may be malicious, and the system maintains a confidence level for the likelihood of an object being malicious. Local SOCs have the ability to set the levels at which they want an object blocked; the default block is 50%, but it can be adjusted according to each company’s individual security requirements.
The Z-Scan zero-day anti-virus system also targets spam (http://response.network-box.com/protection-spam), bringing the total number of anti-spam engines used by Network Box to 25 and the number of anti-spam signatures to more than 19.6 million.
