"Network traffic provides early indication of malware infection"

Researchers reveal the capability of detecting malware infection far in advance with the examination of malware-related network traffic carried by an ISP preceding the actual detection of malware.  In the study of this new malware-independent detection strategy, researchers conducted an analysis of network events provided by years of network traffic handled by an ISP. DNS requests made by malware samples and the re-registration timing of expired domains were also focuses of this study.  This article further discusses the details of this study, the collaboration and support behind this research, other findings made, as well as how this discovery is expected to significantly improve response times and reduce impacts of attacks. 

Phys.org reports "Network traffic provides early indication of malware infection"