Beta

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Georgia Tech Launches "Titan" Malware Analysis System

timothy posted about 2 years ago | from the sir-it's-the-computer dept.

AI 37

wiredmikey writes "A new malware intelligence system developed at Georgia Tech Research Institute is helping organizations share threat intelligence and work together to understand malware and cyber attacks. Dubbed "Titan", the system lets members submit threat data and collaborate on malware analysis and classification. Unlike some other systems, members contribute data anonymously so no one would know which specific organizations had been affected by a specific attack. Titan users also get reports on malware samples they have submitted, such as the potential harm, the likely source, the best remedy, and the risks posed by the sample. The analysis is based on what GTRI researchers learn by reverse-engineering the malware. The project currently analyzes and classifies an average of 100,000 pieces of malicious code each day and growing. While other information sharing initiatives have been launched, many are by vendors, which sometimes sparks concern that the vendor may have some bias, and may be pushing a certain product. Not the case with Titan."

cancel ×

37 comments

Sorry! There are no comments related to the filter you selected.

Whither Apple Support? (0)

Anonymous Coward | about 2 years ago | (#40963057)

I trust this will run on my iPad?

Re:Whither Apple Support? (0)

Anonymous Coward | about 2 years ago | (#40963071)

I trust this will run on my iPad?

No, dodo, it's malware. It's definitely a Windows app.

captcha: sadist

Same old M$ (0)

Anonymous Coward | about 2 years ago | (#40963075)

So, which vulnerability got 'sploited in Windows this time?

Re:Same old M$ (1)

Anonymous Coward | about 2 years ago | (#40963091)

So, which vulnerability got 'sploited in Windows this time?

Is that supposed to be a serious question? I'm pretty sure it's the same as the last one. You press the power button and Windows boots up. Malware.

duh

Re:Same old M$ (1)

kestasjk (933987) | about 2 years ago | (#40963371)

Wow you're on a roll with the tiresome Windows security jokes! Almost as much of a roll as a Windows security consultant yuk yuk yuk

Re:Same old M$ (0)

Anonymous Coward | about 2 years ago | (#40963455)

Wow you're on a roll with the tiresome Windows security jokes! Almost as much of a roll as a Windows security consultant yuk yuk yuk

Shit security + marketing to clueless lusers = exploitville!

What's hard to understand about that?

The average Windows user not only has no clue but really hates the thought of getting one. Hmm. I wonder if there's a connection.

Windows is the malware (-1)

Anonymous Coward | about 2 years ago | (#40963109)

is helping organizations share threat intelligence

I seriously doubt that any malware on windows would be so unsophisticated as to leak entropy in this way.

and work together to understand malware and cyber attacks

If you are using Windows, you will be cyber attacked. What is there to "understand"? It's pretty plain.

members contribute data anonymously so no one would know which specific organizations had been affected by a specific attack

So the most valuable information, that is, who I should not accept any Microsoft files from are the people that will be hidden from me.

the likely source

The source is in Redmond, WA. Get a fucking map.

The project currently analyzes and classifies an average of 100,000 pieces of malicious code each day

At that rate, they will be done analyzing all the windows malware on the typical user's hard drive in 3.5 heat deaths of the universe.

I'm very excited about this project if it will rid the world of Windows. Malware.

Windows is a disease (0)

Anonymous Coward | about 2 years ago | (#40963119)

Forcing government and business to use protocols and formats not owned or controlled by Microsoft is the cure.

Hopefully useful for ClamAV (1)

Anonymous Coward | about 2 years ago | (#40963125)

so it can be used in ReactOS when everyone on XP switches to it in 2014.

Question... (-1)

Anonymous Coward | about 2 years ago | (#40963133)

I've always wondered...

What do they call the African Americans in Australia?

Re:Question... (-1)

Anonymous Coward | about 2 years ago | (#40963143)

I've always wondered...

What do they call the African Americans in Australia?

Really, dude? I see the dumasses are out in force tonight.

Protip brah: they're called aborigines. And stop being a racist.

WTF?? (-1, Flamebait)

Anonymous Coward | about 2 years ago | (#40963147)

Have you two fartknockers lost your minds? The IQ of the entire planet is in depression thanks to this thread. Thanks, fucksticks.

Re:Question... (0)

Anonymous Coward | about 2 years ago | (#40963445)

Protip brah: they're called aborigines. And stop being a racist.

Aborigines [wikipedia.org] are indigenous to Australia so they are called Aborigines, indigenous Australians or the people that the British stole Australia from.

African Americans, OTOH, are descendents of African slaves in the United States not to be confused with a black person who emigrated from the African continent and became a naturalized citizen. I made the mistake of calling someone who emigrated from Nigeria an African American - I got an earful. The same goes with dark skinned people from Jamaica: don't call them African Americans. Of course, your mileage WILL vary from person to person.

Racial stuff is real tricky in the US.

Responding to Trolls and others because I'm bored with all the Windows is Malware "jokes" here.

Re:Question... (-1)

Anonymous Coward | about 2 years ago | (#40963467)

I've always wondered...

What do they call the African Americans in Australia?

Niggers.

Next question?

I joined (0)

Anonymous Coward | about 2 years ago | (#40963155)

Just to know which of my toys had been found. Marvelous system it should make my stuff much more robust.

http://eqt5g4fuenphqinx.onion/ (-1)

Anonymous Coward | about 2 years ago | (#40963167)

Unfortunately, no one can be told what the onion is. You have to see it for yourself.

'sup niggas? (-1)

Anonymous Coward | about 2 years ago | (#40963175)

I'm here to fuck white women

Re:'sup niggas? (-1)

Anonymous Coward | about 2 years ago | (#40963197)

As an open minded progressive caucasian male, I think that it is a terrible commentary on modern society that a young African American male is made to feel the need to validate his feelings to appease societal expectations passed down from the forebears of white male patriarchal oppression. I think as penance we should give the ivory vaginas of our women to these proud black men. Maybe through the healing power of sensual touch can they feel made whole in spirit. I think we as the evil caucasian oppressors should service these Mandingo Warriors however needed. Changing condoms, removing spent semen from the anal cavities of the offered white women, washing the healthy genitals of these black men before we offer our wives, our daughters, and ourselves to them.

Do the right thing.

Re:'sup niggas? (-1)

Anonymous Coward | about 2 years ago | (#40963217)

Woke up this morning 5:30 sharp with a blowjob from two bitches, one was trying to fit my humongous 3 pound balls in her mouth while the other was choking halfway on my 18 and 3\8 inch dick. Must have came about a quart of sperm. They wanted more, cockslapped them unconscious, I had to hit the gym. Frontflipped from my 14th floor loft into my valet parked 2012 Ferrari (I got connections) and gave the valet 3000$ in loose change. Pushed my shit to about 4 hundo (mph, mind you) and I was at the gym in no time. When I entered, the room scent suddenly changed from sweat to wet pussy. Thatâ(TM)s just the effect I have on hoes. Did my usual relax routine, 6000 push-ups, 8500 crunches, bench pressed 30 plates, etc. etc. you know the drill. After doing my shit in 16 minutes, my super strong senses got in action, I was smelling pussy. I looked up, and sure enough this fly honey was coming towards me. When i say fly, I mean that bitch was fine as a fucking umbrella. 18 years old, 44DD titties on a tight fucking frame. I mean a real skinny bitch, the type you losers jack off to, she didnâ(TM)t weigh more than 5 pounds. Took out my trouser monster and she started to squirt hard, she was convulsing and having 6 orgasms at the same time. Then I gave it to her while all the guys were giving me high fives and all the hoes were on the floor squirting like motherfucking fountains. Made the slut beg for my cum, but I didnâ(TM)t give it to her to prove a point, I still came but only compressed air came out, imagine your best orgasm, then multiply it by 35. Didnâ(TM)t say nothing, hopped back in the Lambo and went back home. Now Iâ(TM)m sitting here, drinking 15 000$ champagne and eating gold plated sushis made by the 2 bitches from earlier. Its only 6:30 and I did more in 1 hour than you faggots will do your whole life.

Enjoy jacking off to stupid computers.

If you hate 'em... (-1)

Anonymous Coward | about 2 years ago | (#40963203)

This thread only! IF YOU HATE 'EM... ....POST THEIR INFO!!!

alexander peter kowalski
903 east division st.
syracuse, ny 13208

dob: 01/31/1965

mother:
jan kowalski
dob: 12/03/1933

Source code? (0)

Anonymous Coward | about 2 years ago | (#40963211)

Without it, this might as well be Georgia Tech vaporware.

HEY!!! (-1)

Anonymous Coward | about 2 years ago | (#40963229)

JESUS DIED FOR YOUR SINS.

SO STOP JERKING OFF.

HAVE SOME RESPECT.

because jesus wants you to have full balls when you die and go to heaven.

yes. jesus is a cumdumpster. ill bet hes a bottom too.

Sup, /b/ (-1)

Anonymous Coward | about 2 years ago | (#40963243)

Any of you faggots got sauce [4chan.org] on this bitch?

Them titties is bangin

Re:Sup, /b/ (-1)

Anonymous Coward | about 2 years ago | (#40963255)

This shit's legit. Here's [4chan.org] some more. If any of you 'tards are trying to build the fap folder, I'll upload the whole zip.

Re:Sup, /b/ (-1)

Anonymous Coward | about 2 years ago | (#40963281)

did a chan just break out on slashdot? (0)

Anonymous Coward | about 2 years ago | (#40963291)

did a chan just break out on slashdot?

I think it's safe to say at this point: /slashdot

SAVE US MALDA. YOU'RE OUR ONLY HOPE

good post (-1)

Anonymous Coward | about 2 years ago | (#40963331)

my neighbor's mother makes $75 every hour on the internet. She has been unemployed for 10 months but last month her pay check was $17982 just working on the internet for a few hours. Read more on this site http://linkpot.net/christen/

Tdhis FP for GNAA (-1)

Anonymous Coward | about 2 years ago | (#40963375)

Of playing your teeth into when aacording tothis be a lot slower states tha7 there a full-time GNAA CORRECT NETWORK NIGGER ASSOCIATION OUTER SPACE THE

The Brits did it before... (5, Informative)

Anonymous Coward | about 2 years ago | (#40963413)

The UK Government tried doing this - the IT Security section of CCTA acted as an independent malware clearing house - in the 1990s. They received reports from all the AV companies, merged and anonymised them and then made the cleaned data available to the industry. Then 9/11 happened, the IT Security section of CCTA was closed down and responsibility given to GCHQ, and all interaction with industry was halted....

I do malware analysis professionally (5, Informative)

Anonymous Coward | about 2 years ago | (#40963489)

One of the problems is that any company that does malware analysis or is involved in malware considers a malware binary or a malicious URL to be their intellectual property. It is difficult or impossible to have one-directional information sharing with a company like the one that I work for. Even two directional sharing is close to impossible. Examine all of these crowd-sourced projects really closely and you'll find that the information does not flow freely out of these projects as easily as it flows in. Usually the organization behind the project (funding the project) is a company like mine and they are benefiting from the free info that people are volunteering. These projects are thought up as ways to get people to give them malware binaries and more data without giving something back. The way to test is to find out how easy or difficult it is to get this project to give you a feed of their collected data. If they give it to you without much of a fuss (ala Phishtank), they're probably a real collaborative organization. On the other hand, if they make it difficult to impossible to get a data feed (virustotal, anubis), they're a front for one or more security companies. The ones that are especially insidious are the ones associated with universities (anubis). The association with the university adds legitimacy and the look of openness, but really the data still flows in one direction to a corporate entity.

Could this be .. (3, Insightful)

kestasjk (933987) | about 2 years ago | (#40963511)

.. the worst /. discussion ever?

This differs from CrowdRE how, exactly? (0)

Shoten (260439) | about 2 years ago | (#40963735)

Slashdot even covered [slashdot.org] something like this over a month ago...CrowdRE is the collaborative model put together by a group called CrowdStrike. The Georgia Tech version sounds like a "me too" thing, if you ask me...and I don't know that I'd trust a university to ensure the functional privacy of something like this either.

Re:This differs from CrowdRE how, exactly? (1)

kye4u (2686257) | about 2 years ago | (#40963905)

"The Georgia Tech version sounds like a 'me too' thing" Georgia Tech released its beta version in May. See the FTA or http://www.gatech.edu/newsroom/release.html?nid=132601 [gatech.edu] "I don't know that I'd trust a university to ensure the functional privacy of something" Titan is run by GTRI, which is a non-profit entity. I think that a non-profit entity at a University is more likely to be considerate of privacy issues than a for profit startup, CrowdRE, who has to report to investors that have invested 26 million dollars in venture capital.

Re:This differs from CrowdRE how, exactly? (1)

Shoten (260439) | about 2 years ago | (#40964243)

My concern isn't about motive, but about how effective they'll be at protecting privacy. Whenever I've been involved in projects that are run by an academic body, I find that the security of it suffers. There isn't a lot of money for technical controls, and there isn't usually a lot of operational experience that is needed for solid procedural controls either. Ask any IT security professional who's had to implement security at a college, and you'll also learn that there's vehement opposition to technical controls, as though they would make it harder to learn. I had a professor literally start screaming at a colleague once because he suggested putting a firewall in place in front of some administrative systems. I'm not kidding...he literally erupted, right there, no warning, over the mention of a firewall. I'd never seen anything like it before, but have since seen it happen more than once.

Needs a non-standard NIC? (0)

Anonymous Coward | about 2 years ago | (#40964693)

Something called the TITAN NIC.

idky I rtfa (0)

Anonymous Coward | about 2 years ago | (#40964959)

While other information sharing initiatives have been launched, many are by vendors, which sometimes sparks concern that the vendor may have some bias, and may be pushing a certain product. Not the case with Titan.

I read the article, and I'm just gonna say this to be snarky, and not to make any serious complaint: The entire venture may seem to push a certain product... just by the percentage of malware for each platform they'll cover, it will appear they are giving far too much attention to one platform in particlar, as though the other available platforms with far less malware hardly exist or are hardly important.

Malware per OS Platform? (1)

dgharmon (2564621) | about 2 years ago | (#40965331)

Do they provide a breakdown as to the number of malware samples per platform?
Check for New Comments
Slashdot Login

Need an Account?

Forgot your password?
or Connect with...

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>