this post was submitted on 12 Mar 2024
99 points (91.6% liked)

Technology

63313 readers
4537 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
99
IBM says their latest AI-enhanced storage platform can identify ransomware in under a minute (www.techspot.com)
submitted 11 months ago by umami_wasbi@lemmy.ml to c/technology@lemmy.world
14 comments fedilink hide all child comments
 

Am I too pessimistic about this? Today it can detect ransomware, the next day could be malware, and the day after can be any file.

It's just a data filter that's build in to a hardware and possibly no way to trun off. Last thing I want is a black box watching what I stored on my drive.

you are viewing a single comment's thread
view the rest of the comments
[โ€“] agressivelyPassive@feddit.de 9 points 11 months ago (1 children)

Just to play devil's advocate here: if that system can scan better than current systems, it's already a win. If that system can scan more efficiently than current systems, even with false positives, that could be a win, if used as a screening layer.

There could be use cases for this, or it's just buzzwords and marketing.

[โ€“] Cornelius_Wangenheim@lemmy.world 5 points 11 months ago* (last edited 11 months ago)

This doesn't sound any different than what most host based AV already do. The novel idea is implementing it in on the storage array directly in a way that doesn't hose performance. That means instead of needing 100% coverage of all clients to detect/ prevent ransomware encrypting your network storage, the storage array can detect it and presumably reject the compromised client.