The newest technology acquisition will amplify OPSWAT’s commitment to providing leading Critical Infrastructure Protection (CIP) technology

Today, I am proud to announce that OPSWAT has acquired SNDBOX, the top malware analysis sandbox solution for critical infrastructure organizations. SNDBOX’s cutting-edge dynamic analysis technology will integrate with and enhance OPSWAT’s MetaDefender platform and Malware Analysis Solution to enable organizations to secure their IT and OT environments, and optimize their security practices by automating malware analysis, enriching other intelligence systems, and bringing greater confidence to security and operational teams.

Sandbox technology plays a critical role in day-to-day security operations by providing an isolated execution environment, allowing analysts to detonate potentially malicious software and study how it behaves. As malware continues to become more prevalent and more sophisticated, it is not uncommon for malware to recognize when it is running in a sandbox environment, and thus withhold certain commands until it is launched in the application, system or platform targeted by the attacker.

SNDBOX’s undetectable kernel-mode agent overcomes these attacker tactics by tricking malware into exposing its evasive techniques, revealing its true behavior inside a virtual environment and running as it would within a production system.

“I am thrilled to announce that, once again, OPSWAT has enhanced its CIP capabilities and solution portfolio,” said Benny Czarny, Founder and CEO of OPSWAT. “SNDBOX technology is unrivaled when it comes to quickly and accurately analyzing malware, and the acquisition of this leading technology will continue to position OPSWAT as a market leader in CIP. SNDBOX capabilities make the process of analyzing potential malware easier and faster, which in turn accelerate detection and response. The integration of our technologies will help us continue our mission of preventing zero-day attacks by strengthening our customers’ cybersecurity environments and ensuring threats are mitigated and managed quickly and effectively.”

A one-of-a-kind solution

The one-of-a-kind feature of SNDBOX includes dedicated critical infrastructure profiles where operational technology or OT-targeted malware can securely detonate and reveal its behavior in the appropriate application environment. To detect advanced threat actors, this sandbox mimics a live environment, including enabling command and control server communications. SNDBOX offers further differentiated capabilities including ultra-fast scanning and deep analysis features, augmented with AI-derived classification, which increase overall throughput and scalability, as well as accuracy, at a time when conventional dynamic analysis solutions are slow or evaded.

The combined capabilities of OPSWAT’s MetaDefender platform and SNDBOX technology precede the launch of one of the industry’s most effective malware detection solutions – OPSWAT’s Malware Analysis Solution. This malware analysis solution will provide a fast and automated approach to increase the accuracy of malware detection across both IT and OT environments and reduce the total cost of malware processing by providing an orchestration and automation framework that unifies multiple static and dynamic analysis technologies. By combining these next-generation technologies, and integrating other popular tools, OPSWAT continues to provide leadership and a vision that supports the increasing demands for critical infrastructure labs.

This acquisition follows the announcement of OPSWAT’s acquisition of Bayshore Networks in July, as well as the launch of its next-gen L1001 Kiosk for CIP.