It s Time to Think Diﬀerently About Network Security. Franklyn Jones CMO, Spikes Security

Size: px

Start display at page:

Download "It s Time to Think Diﬀerently About Network Security. Franklyn Jones CMO, Spikes Security"

Dorthy Walker
8 years ago
Views:

1 It s Time to Think Diﬀerently About Network Security Franklyn Jones CMO, Spikes Security

2 Disturbing cyber security investment trend Global Market $105B $170B Proac<ve Detect and block malware a>acks Reac<ve Find and fix breaches aber they happen Source: MarketsAndMarkets, 2015

3 Hypothesis for your consideranon - #1 All tradinonal means of detecnng and blocking malware a>acks will ulnmately fail at some point: Signatures HeurisNcs Machine learning PredicNve analysis Sandbox detonanon

4 Hypothesis for your consideranon - #2 Insanity: Doing the same thing over and over and expecting different results.

5 Hypothesis for your consideranon - #3 IsolaNon technology can eliminate your top a>ack vector Named Top 10 New Technology for InformaNon Security Source: Gartner, 2015

6 Primary vectors for cyber a>acks

7 Browsers and the cyber security problem Most strategically important applicanon Most insecure and vulnerable to cyber a>acks Most expensive business applicanon to secure

8 Good guys exploit browser vulnerabilines Source: CanSecWest, 2015 Pwn2Own 2015 One hacker, one day: ü Chrome ü Firefox ü Safari ü Explorer $220,000 cash prizes

9 Bad guys exploit browser vulnerabilines Source: Brian Krebs, 2015 Malware-as-a Service A $1B black market to buy and sell malware including browser exploit kits Darkode shut down, but has already been replaced

10 Bad guys make their own browsers Beware of efast! Source: Tech Times, 2015

11 Bad guys expanding the malware market 317 million new pieces of malware in ,000 new pieces of malware per day 10 new pieces of malware every second 28 percent virtual machine aware Source: Symantec, 2015

12 A>acks facilitated by human interacnon InteracNon between employee and web content Source: HewleD Packard, Ponemon InsGtute 2015

13 Employees demand complete web freedom Human error accounts for 95% of all cyber security breaches The most prevalent form of breaches involves clicking on a malicious link. Source: IBM Security Services 2014 You can t control me!

14 Malware is increasingly undetectable Why would you allow untrusted code inside your trusted networks? Defense-in-Depth Secure Web Gateway Network AV IDS/IPS Content Analysis Endpoint Security

15 All this explains the swinging pendulum Proac<ve Detect and block malware a>acks Reac<ve Find and fix breaches acer they happen

16 The cost of being reacnve - Alerts 630 organizanons surveyed 17,000 malware alerts a week 423/hour 19% of alerts were reliable - 80/hour 4% of alerts were invesngated 17/hour $1.27 million annually in wasted Nme Source: Ponemon InsGtute, 2015

17 The cost of being reacnve - Discovery 205 days average Nme to discover a>ack 2,982 days (8 years) in one case 70% of breaches discovered by 3 rd party Source: Mandiant/FireEye, 2015

18 The cost of being reacnve - Recovery Professional services - $73,000 Lost business opportunines - $58,000 DownNme - $420,000 Total - $551,000 Source: Kaspersky Lab

19 Reviewing our 3 hypotheses 1. Malware detecnon technologies have reached their limit 2. Doing more of the same is insane and won t fix the problem 3. It s Nme to consider innovanve technologies like IsolaNon

20 Malware isolanon what is it exactly? Named Top 10 New Technology for InformaNon Security Source: Gartner, 2015

21 Malware isolanon what is it exactly? It does not try to detect anything; it assumes everything is bad It puts all web content in an isolated container outside the network It eliminates primary vector for cyber a>acks: the web-employee connecnon It shrinks a>ack surface; saves IT Nme and money

22 Malware isolanon system VM VM How IsolaNon technology eliminates #1 vector for cyber a>acks IsolaNon Appliance

23 Isolate plug-ins off the network VM VM Browser plug-ins are a growing target for malware attacks IsolaNon Appliance ü Java ü Adobe ü QuickTime ü Flash

24 Eliminate malware in SSL traffic All SSL connections initiated and terminated on appliance VM VM IsolaNon Appliance ü Secure encrypted malware isolated ü Private no need to inspect content ü Fast Optimized for entire web session

25 Secure document viewing, prinnng VM VM IsolaNon Appliance ü Transparent integration with Google viewer ü Safely view all MS files ü Content transformed and delivered to printer ü No malware reaches printer

26 Now you can think differently about security Proac<ve ISOLATE/ELIMINATE Web malware akacks Reac<ve Find and fix breaches aber they happen

27 About Spikes Security Founded 2012, a Silicon Valleybased, cyber security innovator Come see us at #208 Visit us at

Sophistication of attacks will keep improving, especially APT and zero-day exploits

Sophistication of attacks will keep improving, especially APT and zero-day exploits FAQ Isla Q&A General What is Isla? Isla is an innovative, enterprise-class web malware isolation system that prevents all browser-borne malware from penetrating corporate networks and infecting endpoint