Skip to main content

Italian Security Researchers Has Created ShieldFS To Fight Ransomware Attacks


The pure-detection techniques like antivirus solutions are not sufficient nowadays. Instead, we need modern solutions with practical self-healing powers against serious threats. With the same vision, a team of Italian security researchers has created ShieldSF.

Unveiled at Black Hat last week, ShieldFS is an add-on for Windows native file system to make it immune to different ransomware attacks. According to the researchers Andrea Continella and Federico Maggi, ShieldFS was tested against more than 12 ransomware instances, including WannaCry, and it detected them with 97% success rate.
According to Kaspersky, ShieldFS learns and models the activity of a filesystem over a period. After learning enough, it can compare filesystem against malicious behavior shown by a ransomware.
Moreover, ShieldFS performs copy-on-write on the first write to store the original files. If an attack is detected, the malware is blocked and the original files are recovered if necessary. This is done with the help of a process called “shadowing.” Whenever a suspicious program is detected, ShieldFS enters an observation phase and logs every activity. If it’s concluded that a program is malicious, the code is blocked and backup is restored.
ShieldFS is a result of 18 months work. Apart from WannaCry, it also detects TeslaCrypt, CryptoWall, and CryptoLocker malware. However, it doesn’t protect against Petya ransomware family.
The researchers have said that ShildFS could be a good complement to the backup systems in computers. This way, it could make the backups more secure and let you restore your system before it’s completely locked down.

Comments

WHAT'S HOT

Amazon Cuts Huawei Watch 2 Price To $194.99

Huawei's latest smartwatch has received a temporary price cut in the United States. There is no word on how long the promotion will last, but those interested

This Medical Camera Can See Right Through Human Body

Now, a team at the University of Edinburgh has developed a medical camera that can see right through your body. This new camera works by detecting light sources inside the body, such as

Google Search About To Receive A New “Speed Test Tool”, Here Is How To Use It

I use the Speed Test tool by Ookla to check the speed of my broadband connection. Generally, I use Google Search to visit the website. But the last time when I Googled the term “speed test,” I didn’t have to go much further than the search result itself.

The First Ubuntu 17.10 Beta Release Is Finally Here-Download 7 Different Flavors Here

Following the tradition, the first Beta release hasn’t witnessed the participation of default Ubuntu release, which will now ship with GNOME desktop environment. This brings us to the