The developer of WASP malware claims it is undetectable — is that likely true?

Threat Intelligence & Incident Response Threat & Vulnerability Management

Very likely4%

Likely39%

Moderately likely29%

Moderately unlikely8%

Unlikely12%

Very unlikely2%

Unsure3%

151 PARTICIPANTS

1.6k views1 Upvote1 Comment

Sort by:

Strategic Banking IT advisor in Banking2 years ago

I find it hard to believe that nothing could detect it. With advanced AI techniques, I'm sure that 'undetectable' will be less and less possible.

Content you might like

What models are in place for risk partners based in Line 2? What are the jobs to be done? How do they operate? What does the structure/operating rythms look like?

How are companies doing Unified Vulnerability Management? The idea is bringing all inputs (AppSec, DevSecOps, VM scanning, asset discovery etc) into one platform. Instead of creating a homegrown solution, are there vendors that do this well?

Which of the following vulnerability management services, if any, do you use at your organization?

HackerOne16%

Bugcrowd41%

Synack13%

Intigriti4%

We're not using a bug bounty platform right now.20%

Other (please comment below!)3%

View Results

Do you have a system to apply patches in a repeatable way?

Yes37%

We're currently developing a system to apply patches.38%

No, but I expect that may change.16%

No, and I don’t expect that to change.7%

Other (please specify in the comments)

View Results

A common challenge in our risk-tiering framework for suppliers is that even the lowest risk tier still requires processing.
Has anyone implemented a "not relevant" risk tier in their model?
This tier would apply to vendors posing genuinely negligible security risk.

The developer of WASP malware claims it is undetectable — is that likely true?

Sort by:

Content you might like

What models are in place for risk partners based in Line 2? What are the jobs to be done? How do they operate? What does the structure/operating rythms look like?

How are companies doing Unified Vulnerability Management? The idea is bringing all inputs (AppSec, DevSecOps, VM scanning, asset discovery etc) into one platform. Instead of creating a homegrown solution, are there vendors that do this well?

Which of the following vulnerability management services, if any, do you use at your organization?

Do you have a system to apply patches in a repeatable way?

A common challenge in our risk-tiering framework for suppliers is that even the lowest risk tier still requires processing.
Has anyone implemented a "not relevant" risk tier in their model?
This tier would apply to vendors posing genuinely negligible security risk.

What sets us apart?

Take Your Insights On-the-Go

The developer of WASP malware claims it is undetectable — is that likely true?

Sort by:

Content you might like

What models are in place for risk partners based in Line 2? What are the jobs to be done? How do they operate? What does the structure/operating rythms look like?

How are companies doing Unified Vulnerability Management? The idea is bringing all inputs (AppSec, DevSecOps, VM scanning, asset discovery etc) into one platform. Instead of creating a homegrown solution, are there vendors that do this well?

Which of the following vulnerability management services, if any, do you use at your organization?

Do you have a system to apply patches in a repeatable way?

A common challenge in our risk-tiering framework for suppliers is that even the lowest risk tier still requires processing.Has anyone implemented a "not relevant" risk tier in their model?This tier would apply to vendors posing genuinely negligible security risk.

What sets us apart?

Take Your Insights On-the-Go

A common challenge in our risk-tiering framework for suppliers is that even the lowest risk tier still requires processing.
Has anyone implemented a "not relevant" risk tier in their model?
This tier would apply to vendors posing genuinely negligible security risk.