Category: Product

Multi-Vector Virtual Execution™ (MVX) Engine – The MVX engine is designed to capture and confirm today’s cyber attacks by detonating Web objects, files, suspicious attachments, and mobile applications within instrumented virtual environments. It is the leading signature-less technology that can be used across threat vectors to automate the discovery and forensic analysis of malicious code resulting in multi-vector dynamic threat intelligence on attacks specific to an organization.

By exchanging anonymized threat intelligence through the DTI cloud, participants gain contextual visibility of global attacks and can strengthen their collective security with the latest protections and neutralize attacks before they cause catastrophic damage.

Partner Interoperability via APIs and Standards-based Threat Intelligence Metadata – Partner integrations utilize the FireEye APIs to address the network visibility, endpoint validation, and enforcement options needed by today’s organizations. In addition, FireEye will be publishing a standards-based threat intelligence metadata exchange format that enables FireEye and third-party security solutions to interoperate and automate key cyber security workflows.

“Dynamic threat intelligence is critical to combating advanced threats from adversaries that may already be inside your network,” said Mark Seward, senior director of security and compliance at Splunk Inc.

“FireEye is the security platform organizations can rely upon for protection against today’s new breed of cyber attacks,” said David DeWalt, FireEye chairman and CEO. “We have enabled flexible options so customers can integrate our dynamic threat intelligence into their existing security infrastructure to automate the threat response and rapidly neutralize today’s cyber attacks.”

Link: http://www.webhostmagazine.com/2013/02/next-generation-threat-protection-from-fireeye/

The firm said the combination of services will offer companies unmatched visibility across their network, letting them dynamically see how malware enters, infects and moves thus letting them intelligently respond to the threat.

“Sourcefire’s threat-centric approach to security gives organisations continuous visibility, analysis and control across their environment and along the full attack continuum – before, during and after an attack.”

Sourcefire is one of many companies to warn businesses that they must implement more robust network monitoring tools if they want to defend themselves from hackers.

BAE Systems recently told V3 that firms’ current lack of knowledge regarding what’s going on in their systems is giving hackers an advantage, by letting them shift tactics whenever they are uncovered.

Link: http://www.v3.co.uk/v3-uk/news/2250158/sourcefire-antimalware-appliance-aims-to-stop-apts-in-their-tracks

The report finds that stalling codes are particularly troublesome because they “can no longer be handled by traditional sandboxes (even if the trick is known).”

“Current sandboxes have a lack of visibility into the execution of a malware program,” said Giovanni Vigna, CTO of Lastline. “To detect this new breed of evasive threats, a sandbox needs to have visibility and must be able to do this stealthily.

Link: http://www.net-security.org/malware_news.php?id=2423

.To achieve these goals security teams must not just employ better security analytics to help identify advanced threats, but also must have the tools and threat intelligence to understand which security alerts represent the highest risk to the business, and what assets require the greatest protection.

RSA’s new solutions are expressly designed to align the efforts of the security and business teams to better protect the critical assets of an organization. Built on the proven architectures of the RSA Archer® Governance, Risk and Compliance (GRC) platform and RSA(®) Data Loss Prevention (DLP) suite, these new solutions combine with the RSA Security Analytics platform to help next generation Security Operations Centers address multiple dimensions of advanced threats.

Along with these new solutions, RSA is also releasing the latest version of RSAArcher(®) Threat Management 4.0 software that is designed to prioritize security projects based on risk and threat scores by aggregating and fusing threat intelligence feeds with vulnerability scan results from multiple sources. “Prioritizing the security alerts that have the most potential risk to the organization is critical in ensuring maximum protection for sensitive assets and information. … We built these new solutions on the proven RSA Archer GRC platform, which not only makes them very functional out-of-the-box but also helps organizations already using RSA Archer technology to extract more value out of their GRC investments.”

The new solutions from RSA can help align the efforts of security and business groups in order to be more efficient and better address the security incidents and threats that have the biggest potential to impact the business.”

Link: http://pn.newsblaze.com/release/2013022505310600027.pnw/topstory.html

A bot (short for robot) is a malware-infected PC or device that is remotely controlled by cybercriminals, and a botnet is a whole network of those infected devices. Cybercriminals can use the device to make money by sending spam, displaying and clicking ads or in the case of a smartphone, sending text messages to premium numbers.

Helpdesk call volumes increase when customers experience slow connections or other problems, and infected devices that send spam take up bandwidth that slows down the network for everyone. By cleaning infected devices and restoring their performance, Antibot’s automated cleaning capabilities will turn a negative user experience into a positive one, and the reductions in volume and length of calls to operator support will result in considerable savings for operators.

A smooth user experience with few interaction steps keeps Antibot light for the consumer, and its “always up-to-date” status and capability to remove complex malware make it the most effective product of its kind.

Link: http://www.net-security.org/secworld.php?id=14435

Wombat also provides complementary software-training modules that can be used in conjunction with SmishGuru, providing a holistic approach to BYOD threats.

“As more companies embrace BYOD policies to empower employee productivity, cyber-criminals will seek new ways to trick people into providing sensitive information making text message phishing, or ‘smishing,’ one of several attack vectors on smartphones,” principal analyst for enterprise security at Current Analysis Paula Musich said in a statement.

A recent study from Nielsen indicated 67 percent of new mobile phone purchases are smartphones, and yet while they are embracing mobile conveniences such as texting and geo location applications, surveys also suggest users are careless about security. A July 2012 study, this time from EMC’s security division, RSA, revealed people are more likely to fall for phishing attacks on mobile devices than on PCs.

“SmishGuru is part of a holistic approach to security awareness and training that leverages our combination of simulated attacks and highly interactive employee training to help companies protect against the latest breeds of malware and spyware used to infect corporate networks and steal valuable data.”

Link: http://www.eweek.com/mobile/wombat-launches-smishguru-to-combat-phishing-attacks/