Automated Interactivity — which automatically simulates how a User interacts with the ANY inside. This was also launched last year. RUN sandbox to automatically trigger cyber attack executionAutomated Interactivity
The initial phase of Automated Interactivity included simple interactions, such as clicking on buttons and solving CAPTCHA problems. This streaming for investigation made it easy for many analysts by breaking down their sandbox use via API level.
We are very thrilled to announce today the next stage of Automated Interactivity — a Smart Content Analysis mechanism that extends its threat detection dinosaur power capabilities into a further layer by providing enhanced & more sophisticated analysis of even the most advanced attacks.
So what does this upgrade mean exactly and how does it work, here is everything you need to know.
Introduction to Smart Content Insights Automated Interactivity
Automating Interactivity with Smart Content Analysis: This is a mechanism that automatically executes the malware and phishing attacks in such a way, it detects and detonates the key components at every stage of the kill chain.
It works in three steps: Automated Interactivity
Image Scanner: This checks files for content like URL and email attachments.
Content Extraction: It extracts the content to be detonated to make the attack kick in, such as URLs from QR codes and phishing links rewritten by security tools.
Simulated User Interactions — It then mimics users interacting with the extracted content such as opening URLs (which is launched in a browser), and executing malware payload from inside an archive.
Adapting Smart Content Analysis to New Landscape of Threats
ANY is not another automated solution with an algorithm locked in a vault ready to make mass-automated decisions that we can never release. Designed to adapt and grow with the ever-evolving threat landscape, RUN’s Smart Content Analysis
New attack scenarios are added to it as soon as they are detected by our team of threat analysts. This guarantees the almost instant turn-around to new threat and method.
Why Use It
The new Automated Interactivity is a fantastic component of your security workflow, as it:
Enhances threat detection for sandbox instances initiated through an API
Provides insights to security specialists by automating complex processes, simplifies their task and cuts down the learning curve.
Reduces human effort in threat analysis, automating tedious tasks that enable analysts to focus on strategic activities
Facilitates faster analysis through the rapid aggregation and analysis of threats for a quicker response and which helps remediation.