Security gmail 816901264

Distribute malware by Attaching pollution files Email is one of the oldest tips in this book. More theoretical risk-real attackers Using malicious files Always infect the target. So, in addition to anti-spam and anti-phishing efforts, Gmail expanded its malware detection capabilities late last to include more customized document monitoring. Good news, it's working.

At the RSA Security Conference in San Francisco on Tuesday, Google's head of security and anti-abuse research, Elie Bursztein, will present the differences between the new document deep learning scanner and the 300 billion attachments that must be processed each week. It is challenging to distinguish between all infinite variants of legitimate documents and documents that have been specially processed to hide some dangerous documents. Google says that 63% of the malicious files it blocks each day are different from those marked by the system the day before. But this is exactly the type of pattern recognition problem, and deep learning may help.

Currently, 56% of malware threats targeting Gmail users come from Microsoft Office documents, and 2% come from PDFs. In the first few months of use, the new scanner has increased its daily detection of malicious Office documents by 10%.

"Ten percent is important," Bursttine told Wired. "We are working to close the gap as much as possible. We want to increase machine learning as much as possible. Machine learning sometimes does amazing things, but sometimes it is exaggerated. We try to use it as a The extra purpose layer is not the only one. We think it works better. "

See also  Google Meet starts to appear in the Gmail sidebar

The document analyzer will look for common red marks, and if the file contains components that may be intentionally obfuscated, it will detect them and perform other checks, such as checking macros [a tool in a Microsoft Word document that orders commands in order Linked together, and often used in attacks]. The number of malicious files sent by attackers varies greatly from day to day. Bursztein said that since its deployment, document scanners have been particularly good at marking suspicious documents that were suddenly sent by malicious botnets or other large-scale distribution methods. He was also surprised to see how effective the scanner was in of analysis Microsoft Excel file, A complex file format that is difficult to evaluate.

continue reading

Although the 10% increase in detection rate does not sound much, it is a huge improvement in the scope of Google's research, and given that the threat of malicious files has become a worldwide concern, any gain is fruitful . Bursztein said companies and non-profits are three times more likely to be attacked by malicious files other organizations, while government entities are five times more likely to be attacked by other organizations. Certain industries are also more likely to be targeted than others. For example, transportation and critical infrastructure utilities are much more risky than the education sector.

The prevalence of malicious document attacks varies around the world, but this method is always an option for attackers. Bursztein noted that toolkits for crafting malicious files and tailoring them to evade antivirus scanners can be found on online crime forums and range in price from about $ 400 to $ 5,000.

See also  Amazon Pharmacy Launches RxPass Prescription Drug Subscription Service for U.S. Prime Members

Although the scanner captures more malicious documents ever before, Bursztein and his colleagues will continue to improve it to prevent larger pieces of malware being sent to global Gmail accounts.

"Malware is what we do after spam and phishing, because malware is a bit harder," he said. "We didn't include the malware in the email itself; these files were all we had at the time. However, we always want to improve our detection capabilities, and for malicious files, we the files that have the greatest impact on users. "

If only the horrifying Word document is downloaded, users will get any extra protection they can get.

More exciting wired stories

By Rebecca French

Rebecca French writes books about Technology and smartwatches. Her books have received starred reviews in Technology Shout, Publishers Weekly, Library Journal, and Booklist. She is a New York Times and a USA Today Bestseller...