Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

Startup Launches Free Malware Blocker

Haute Secure comes out of stealth mode with freeware that can recognize and filter malware at the client

A new, free software tool promises to recognize incoming malware -- and prevent it from being loaded onto your computer.

Haute Secure, a startup that was founded last year and has received $500,000 in seed-round funding, today launched a beta version of its eponymous application, which runs on Windows. The free download, which is designed for individual users, is available to anyone who wants to kick its tires.

Haute Secure uses a special algorithm to reveal the behavior displayed by malware when it is trying to install itself on a client machine. When it sees this sort of behavior, it can react to prevent the installation from occurring, according to Steve Anderson, vice president of marketing for the startup.

"It sits at the kernel level in Windows and watches about 70 API calls," Anderson says. "It allows you to set rules of behavior for applications, and if those rules are violated, it can stop a download from occurring."

In addition, Haute Secure is collecting a database of malicious links -- both known and newly-discovered -- that it will use to help identify risky sites and downloads so that the malware never makes it to the machine, much less gets installed.

"There are tools that offer some of this functionality now, but when they find a problem, they block the entire site," Anderson observes. "What we're doing is allowing users to surf safely, without completely blocking them from the sites they want to go to."

Haute Secure also is developing server-side technology that will let enterprises check their systems for malware and prevent it from spreading across the organization. Eventually, the company plans to roll out a subscription service, but it probably will continue to offer the malware filter/blocker for free to PC users, Anderson says. "We see that functionality becoming a commodity."

For now, Haute Secure will compete for the attention of users who have experimented with Websense and McAfee's SiteAdvisor, Anderson acknowledges. "Those were good first attempts, and they were inspirations for us," he says. "But we think we're going farther."

A general release of the software is planned for September.

— Tim Wilson, Site Editor, Dark Reading

  • Haute Secure
  • McAfee Inc. (NYSE: MFE)
  • Websense Inc. (Nasdaq: WBSN) Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one ... View Full Bio

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    COVID-19: Latest Security News & Commentary
    Dark Reading Staff 4/7/2020
    The Coronavirus & Cybersecurity: 3 Areas of Exploitation
    Robert R. Ackerman Jr., Founder & Managing Director, Allegis Capital,  4/7/2020
    'Unkillable' Android Malware App Continues to Infect Devices Worldwide
    Jai Vijayan, Contributing Writer,  4/8/2020
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon Contest
    Write a Caption, Win a Starbucks Card! Click Here
    Latest Comment: Digitized COVID-19 Prevention
    Current Issue
    6 Emerging Cyber Threats That Enterprises Face in 2020
    This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
    Flash Poll
    State of Cybersecurity Incident Response
    State of Cybersecurity Incident Response
    Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2018-21034
    PUBLISHED: 2020-04-09
    In Argo versions prior to v1.5.0-rc1, it was possible for authenticated Argo users to submit API calls to retrieve secrets and other manifests which were stored within git.
    CVE-2020-1895
    PUBLISHED: 2020-04-09
    A large heap overflow could occur in Instagram for Android when attempting to upload an image with specially crafted dimensions. This affects versions prior to 128.0.0.26.128.
    CVE-2020-5263
    PUBLISHED: 2020-04-09
    auth0.js (NPM package auth0-js) greater than version 8.0.0 and before version 9.12.3 has a vulnerability. In the case of an (authentication) error, the error object returned by the library contains the original request of the user, which may include the plaintext password the user entered. If the er...
    CVE-2020-9499
    PUBLISHED: 2020-04-09
    Some Dahua products have buffer overflow vulnerabilities. After the successful login of the legal account, the attacker sends a specific DDNS test command, which may cause the device to go down.
    CVE-2020-9500
    PUBLISHED: 2020-04-09
    Some products of Dahua have Denial of Service vulnerabilities. After the successful login of the legal account, the attacker sends a specific log query command, which may cause the device to go down.