Georgia Tech Launches "Titan" Malware Analysis System

wiredmikey writes "A new malware intelligence system developed at Georgia Tech Research Institute is helping organizations share threat intelligence and work together to understand malware and cyber attacks. Dubbed "Titan", the system lets members submit threat data and collaborate on malware analysis and classification. Unlike some other systems, members contribute data anonymously so no one would know which specific organizations had been affected by a specific attack. Titan users also get reports on malware samples they have submitted, such as the potential harm, the likely source, the best remedy, and the risks posed by the sample. The analysis is based on what GTRI researchers learn by reverse-engineering the malware. The project currently analyzes and classifies an average of 100,000 pieces of malicious code each day and growing. While other information sharing initiatives have been launched, many are by vendors, which sometimes sparks concern that the vendor may have some bias, and may be pushing a certain product. Not the case with Titan."

Whither Apple Support?

I trust this will run on my iPad?

Re:Whither Apple Support?

I trust this will run on my iPad?

No, dodo, it's malware. It's definitely a Windows app.

captcha: sadist

Same old M$

So, which vulnerability got 'sploited in Windows this time?

Re:Same old M$

So, which vulnerability got 'sploited in Windows this time?

Is that supposed to be a serious question? I'm pretty sure it's the same as the last one. You press the power button and Windows boots up. Malware.

duh

Re:Same old M$

[kestasjk]

Wow you're on a roll with the tiresome Windows security jokes! Almost as much of a roll as a Windows security consultant yuk yuk yuk

Re:Same old M$

Wow you're on a roll with the tiresome Windows security jokes! Almost as much of a roll as a Windows security consultant yuk yuk yuk

Shit security + marketing to clueless lusers = exploitville!

What's hard to understand about that?

The average Windows user not only has no clue but really hates the thought of getting one. Hmm. I wonder if there's a connection.

Windows is the malware

is helping organizations share threat intelligence

I seriously doubt that any malware on windows would be so unsophisticated as to leak entropy in this way.

and work together to understand malware and cyber attacks

If you are using Windows, you will be cyber attacked. What is there to "understand"? It's pretty plain.

members contribute data anonymously so no one would know which specific organizations had been affected by a specific attack

So the most valuable information, that is, who I should not accept any Microsoft files from are the people that will be hidden from me.

the likely source

The source is in Redmond, WA. Get a fucking map.

The project currently analyzes and classifies an average of 100,000 pieces of malicious code each day

At that rate, they will be done analyzing all the windows malware on the typical user's hard drive in 3.5 heat deaths of the universe.

I'm very excited about this project if it will rid the world of Windows. Malware.

Windows is a disease

Forcing government and business to use protocols and formats not owned or controlled by Microsoft is the cure.

Hopefully useful for ClamAV

so it can be used in ReactOS when everyone on XP switches to it in 2014.

Question...

I've always wondered...

What do they call the African Americans in Australia?

Re:Question...

I've always wondered...

What do they call the African Americans in Australia?

Really, dude? I see the dumasses are out in force tonight.

Protip brah: they're called aborigines. And stop being a racist.

Re:Question...

Protip brah: they're called aborigines. And stop being a racist.

Aborigines are indigenous to Australia so they are called Aborigines, indigenous Australians or the people that the British stole Australia from.

African Americans, OTOH, are descendents of African slaves in the United States not to be confused with a black person who emigrated from the African continent and became a naturalized citizen. I made the mistake of calling someone who emigrated from Nigeria an African American - I got an earful. The same goes with dark skinned people from Jamaica: don't call them African Americans. Of course, your mileage WILL vary from person to person.

Racial stuff is real tricky in the US.

Responding to Trolls and others because I'm bored with all the Windows is Malware "jokes" here.

Re:Question...

I've always wondered...

What do they call the African Americans in Australia?

Niggers.

Next question?

WTF??

Have you two fartknockers lost your minds? The IQ of the entire planet is in depression thanks to this thread. Thanks, fucksticks.

I joined

Just to know which of my toys had been found. Marvelous system it should make my stuff much more robust.

http://eqt5g4fuenphqinx.onion/

Unfortunately, no one can be told what the onion is. You have to see it for yourself.

'sup niggas?

I'm here to fuck white women

Re:'sup niggas?

As an open minded progressive caucasian male, I think that it is a terrible commentary on modern society that a young African American male is made to feel the need to validate his feelings to appease societal expectations passed down from the forebears of white male patriarchal oppression. I think as penance we should give the ivory vaginas of our women to these proud black men. Maybe through the healing power of sensual touch can they feel made whole in spirit. I think we as the evil caucasian oppressors should service these Mandingo Warriors however needed. Changing condoms, removing spent semen from the anal cavities of the offered white women, washing the healthy genitals of these black men before we offer our wives, our daughters, and ourselves to them.

Do the right thing.

Re:'sup niggas?

Woke up this morning 5:30 sharp with a blowjob from two bitches, one was trying to fit my humongous 3 pound balls in her mouth while the other was choking halfway on my 18 and 3\8 inch dick. Must have came about a quart of sperm. They wanted more, cockslapped them unconscious, I had to hit the gym. Frontflipped from my 14th floor loft into my valet parked 2012 Ferrari (I got connections) and gave the valet 3000$ in loose change. Pushed my shit to about 4 hundo (mph, mind you) and I was at the gym in no time. When I entered, the room scent suddenly changed from sweat to wet pussy. Thatâ(TM)s just the effect I have on hoes. Did my usual relax routine, 6000 push-ups, 8500 crunches, bench pressed 30 plates, etc. etc. you know the drill. After doing my shit in 16 minutes, my super strong senses got in action, I was smelling pussy. I looked up, and sure enough this fly honey was coming towards me. When i say fly, I mean that bitch was fine as a fucking umbrella. 18 years old, 44DD titties on a tight fucking frame. I mean a real skinny bitch, the type you losers jack off to, she didnâ(TM)t weigh more than 5 pounds. Took out my trouser monster and she started to squirt hard, she was convulsing and having 6 orgasms at the same time. Then I gave it to her while all the guys were giving me high fives and all the hoes were on the floor squirting like motherfucking fountains. Made the slut beg for my cum, but I didnâ(TM)t give it to her to prove a point, I still came but only compressed air came out, imagine your best orgasm, then multiply it by 35. Didnâ(TM)t say nothing, hopped back in the Lambo and went back home. Now Iâ(TM)m sitting here, drinking 15 000$ champagne and eating gold plated sushis made by the 2 bitches from earlier. Its only 6:30 and I did more in 1 hour than you faggots will do your whole life.

Enjoy jacking off to stupid computers.

If you hate 'em...

This thread only! IF YOU HATE 'EM... ....POST THEIR INFO!!!

alexander peter kowalski
903 east division st.
syracuse, ny 13208

dob: 01/31/1965

mother:
jan kowalski
dob: 12/03/1933

Source code?

Without it, this might as well be Georgia Tech vaporware.

HEY!!!

JESUS DIED FOR YOUR SINS.

SO STOP JERKING OFF.

HAVE SOME RESPECT.

because jesus wants you to have full balls when you die and go to heaven.

yes. jesus is a cumdumpster. ill bet hes a bottom too.

Sup, /b/

Any of you faggots got sauce on this bitch?

Them titties is bangin

Re:Sup, /b/

This shit's legit. Here's some more. If any of you 'tards are trying to build the fap folder, I'll upload the whole zip.

Re:Sup, /b/

Okay, homos, get to fappin!

http://images.4chan.org/b/src/1344761324032.jpg
http://images.4chan.org/b/src/1344761540120.jpg
http://images.4chan.org/b/src/1344761751242.jpg
http://images.4chan.org/b/src/1344762211921.jpg
http://images.4chan.org/b/src/1344762352460.jpg
http://images.4chan.org/b/src/1344763203853.jpg
http://images.4chan.org/b/src/1344763380033.jpg

I got some more if anybody wants them!

did a chan just break out on slashdot?

did a chan just break out on slashdot?

I think it's safe to say at this point: /slashdot

SAVE US MALDA. YOU'RE OUR ONLY HOPE

good post

my neighbor's mother makes $75 every hour on the internet. She has been unemployed for 10 months but last month her pay check was $17982 just working on the internet for a few hours. Read more on this site http://linkpot.net/christen/

Tdhis FP for GNAA

Of playing your teeth into when aacording tothis be a lot slower states tha7 there a full-time GNAA CORRECT NETWORK NIGGER ASSOCIATION OUTER SPACE THE

The Brits did it before...

The UK Government tried doing this - the IT Security section of CCTA acted as an independent malware clearing house - in the 1990s. They received reports from all the AV companies, merged and anonymised them and then made the cleaned data available to the industry. Then 9/11 happened, the IT Security section of CCTA was closed down and responsibility given to GCHQ, and all interaction with industry was halted....

I do malware analysis professionally

One of the problems is that any company that does malware analysis or is involved in malware considers a malware binary or a malicious URL to be their intellectual property. It is difficult or impossible to have one-directional information sharing with a company like the one that I work for. Even two directional sharing is close to impossible. Examine all of these crowd-sourced projects really closely and you'll find that the information does not flow freely out of these projects as easily as it flows in. Usually the organization behind the project (funding the project) is a company like mine and they are benefiting from the free info that people are volunteering. These projects are thought up as ways to get people to give them malware binaries and more data without giving something back. The way to test is to find out how easy or difficult it is to get this project to give you a feed of their collected data. If they give it to you without much of a fuss (ala Phishtank), they're probably a real collaborative organization. On the other hand, if they make it difficult to impossible to get a data feed (virustotal, anubis), they're a front for one or more security companies. The ones that are especially insidious are the ones associated with universities (anubis). The association with the university adds legitimacy and the look of openness, but really the data still flows in one direction to a corporate entity.

Could this be ..

[kestasjk]

.. the worst /. discussion ever?

This differs from CrowdRE how, exactly?

[Shoten]

Slashdot even covered something like this over a month ago...CrowdRE is the collaborative model put together by a group called CrowdStrike. The Georgia Tech version sounds like a "me too" thing, if you ask me...and I don't know that I'd trust a university to ensure the functional privacy of something like this either.

Re:This differs from CrowdRE how, exactly?

[kye4u]

"The Georgia Tech version sounds like a 'me too' thing" Georgia Tech released its beta version in May. See the FTA or http://www.gatech.edu/newsroom/release.html?nid=132601 "I don't know that I'd trust a university to ensure the functional privacy of something" Titan is run by GTRI, which is a non-profit entity. I think that a non-profit entity at a University is more likely to be considerate of privacy issues than a for profit startup, CrowdRE, who has to report to investors that have invested 26 million dollars in venture capital.

Re:This differs from CrowdRE how, exactly?

[Shoten]

My concern isn't about motive, but about how effective they'll be at protecting privacy. Whenever I've been involved in projects that are run by an academic body, I find that the security of it suffers. There isn't a lot of money for technical controls, and there isn't usually a lot of operational experience that is needed for solid procedural controls either. Ask any IT security professional who's had to implement security at a college, and you'll also learn that there's vehement opposition to technical controls, as though they would make it harder to learn. I had a professor literally start screaming at a colleague once because he suggested putting a firewall in place in front of some administrative systems. I'm not kidding...he literally erupted, right there, no warning, over the mention of a firewall. I'd never seen anything like it before, but have since seen it happen more than once.

Needs a non-standard NIC?

Something called the TITAN NIC.

idky I rtfa

While other information sharing initiatives have been launched, many are by vendors, which sometimes sparks concern that the vendor may have some bias, and may be pushing a certain product. Not the case with Titan.

I read the article, and I'm just gonna say this to be snarky, and not to make any serious complaint: The entire venture may seem to push a certain product... just by the percentage of malware for each platform they'll cover, it will appear they are giving far too much attention to one platform in particlar, as though the other available platforms with far less malware hardly exist or are hardly important.

Malware per OS Platform?

[dgharmon]

Do they provide a breakdown as to the number of malware samples per platform?