-
Gmail's existing machine learning models help block more than 99.9 percent of threats from reaching inboxes.
-
The company recently added a new generation of document scanners that relies on deep learning to improve detection capabilities, the official blog notes.
-
Only Office documents are being scanned at the moment, but the technology is still under development.
With the ease of access to the internet and mobile phones, people are embracing digital life than ever before. Now, users can hail a cab, transfer money, order food and do other stuff with just a few clicks on a handset’s screen, but you .
Unfortunately, there are many naive users who find it hard to detect what’s genuine and not; they trust everything they receive in the email and this is being misused by cybercriminals.
Hackers are coming up with mischievous techniques such as malware-laced documents attached in the mail, warning notice about impending bank account closure, debit/credit card renewal to fool people to their reveal financial credentials.
Taking cognizance of the issue, Google over the past few years has and curb the spread of malware.
“In late 2019, the search engine giant launched a new scanner to enhance the detection coverage of Office documents that contain malicious scripts and now the latest results suggest the efforts have born fruits.”
Google claims malicious document detection on Gmail has improved by more than 150 percent.
Learn more:
What’s the technology behind Gmail’s new scanner?
Under the hood, Google scanner uses a distinct (TensorFlow Extended) and a custom document analyzer for each file type. The document analyzers' primary job is to parse the document, identify common attack patterns, extract macros, deobfuscate (simplify) content, and perform feature extraction.
Learn more:
Also, the scanner runs in parallel with existing detection capabilities and all of this contributes to the final verdict of Google 'decision engine' to block a malicious document.
"Combining different scanners is one of the cornerstones of our defense-in-depth approach to help protect users and ensure our detection system is resilient to adversarial attacks. We will continue to actively expand the use of artificial intelligence to protect our users’ inboxes, and to stay ahead of attacks."
-Gmail security team
, a series of IT security conferences is happening in San Francisco where many security vendors including Google, are leveraging the event to launch a new product and announce updates and enhancements to their offerings. A few companies and their security offerings are listed below.
Intel announced four new security capabilities and provided further information on its previously-announced Compute Lifecycle Assurance supply chain transparency initiative. Intel believes that the next ten years will see more architecture advancements than the last 50 years. The capabilities are application isolation, VM and container isolation, full memory encryption, and Intel platform firmware resilience.
SentinelOne announced the general availability of its container and cloud-native workload protection (CWPP) offering, which provides fully featured autonomous runtime protection, detection and response for cloud workloads. The solution extends SentinelOne’s XDR platform to introduce full visibility, detection, response and threat hunting for containerized workloads.
Secureworks launched Cloud Configuration Review, a cloud configuration assessment solution and the first in a suite of services building on a partnership with VMware. The platform offers public cloud security and compliance monitoring capabilities, to help detect configuration vulnerabilities, understand the business impact of critical risks, and address challenges associated with public cloud adoption.
Gurucul announced a cloud-native data science-driven platform for automating security controls that includes User and Entity Behavior Analytics (UEBA), Network Traffic Analysis (NTA), log aggregation, SIEM capabilities, SOAR, and threat hunting. Leveraging machine learning and artificial intelligence, the Unified Security & Risk Analytics helps organizations ingest and analyze data from the network, IT systems, cloud platforms, applications, IoT, and more, for real-time detection of threats