5 Threats Your Anti-Virus Won t Stop. Thurstan Johnston Presales Engineer

Transcription

1 5 Threats Your Anti-Virus Won t Stop Thurstan Johnston Presales Engineer

2 Agenda The state of malware what s changed and why? The truth about anti-virus detection rates 5 threats your anti-virus won t stop Adopting a layered security strategy to protect your endpoints

3 How Likely Is an Attack? Threats are increasing exponentially 1991: IBM reports more than 400 virus samples in its database 2007: 10,000 different malware files discovered on a typical day 2010: 60,000 different malware files discovered on a typical day

4 It s About Data Theft Threats are Targeted Web Based Fast Changing Targeting your data School Personal Medical

5 High Profile Data Breaches

6 High Profile Data Breaches

7 The Consequences Loss of Funding Cost to Remediate Loss of Productivity Loss of Data Loss of Reputation Fines, penalties or prosecution

8 The Truth About Anti-Virus Detection Rates confirmed malware files analyzed 13 top AV vendors Average detection rate: 19% Average time to catch up to new malware: 11.6 days Source: Malware Detection Rates for Leading AV Solutions A Cyveillance Analysis, August 2010

9 5 Threats Your Anti-Virus Won t Stop The zeroday threat The targeted attack The unauthorised application The infected USB device Fake Anti- Virus

10 The Zero-Day Threat Unknown/new malware Uses a security hole to carry out an attack Exploits application/browser vulnerabilities

11 The Targeted Attack Advanced Persistent Threats Spear Phishing Highly targeted to a person/organization Objective is to get victim to click a link or download file Malware infects the victim s PC and opens back door for hackers to access company data

12 43% Top 10 Sectors by Number of Breaches % 13% 8% 5% 5% 4% 3% 3% 3% Healthcare Govt. Education Financial Media Software Retail Hospitality Insurance IT

13 The Unauthorized Application Potentially unwanted applications Instant messaging Social networking sites Peer to peer, games Unacceptable security risk System performance concern License compliance issue

14 The Infected USB Device Opens the door to malware propagating in the network Bypasses other layers of defense such as gateway firewall protection 25% of all new worms are designed to spread through portable storage devices

15 Fake Anti-Virus Malware that deceives a user to pay for fake removal of malware Distributed with drive-by downloads 3 objectives: Make money Obtain credit card info Deliver malware to steal data or take over a computer

16 Control over Applications Educate Employees Compliance & Security Policies Ability to lockdown systems Full Visibility of IT Assets Intrusion Hospitality Prevention Prevent Ticketing misconfigurations

17 The 1st Layer

18 Anti-Virus The First Layer Prevents Known threats of any type. Viruses, Worms, Trojans, Rootkits, Spyware, Adware. Unknown threats that behave like a known threat. Company Benefits Meet basic security compliancy Anti-virus solutions are now a commodity Should already be in place

19 The 2 nd Layer

20 Application Control Prevents Zero-Day Attacks Mutating Malware Advanced Persistent Threats Company Benefits Meet robust compliance policies Protects resource usage Accelerate IT productivity Lowers help-desk costs

21 The 3rd Layer

22 Instant System Restore Prevents Accidental System Misconfiguration Ongoing Software Issues Incidental System Degradation Removes hidden malware Company Benefits Reduces IT Support tickets Boosts productivity Ensures 100% workstation availability Reduces costs on IT repairs

23 Application Control: With Anti-Virus Anti-Virus Heuristics still help identify and catch: Malware that targets unpatched OS and applications Malware that is carried as data and run as macros Application Control Zero-Day attacks Mutating Malware Targeted Attacks Potentially Unwanted Programs

24 Final thoughts Do not rely on anti-virus alone. Prevention is better than a cure. Try Application Control it may surprise you!

25 Next Steps Find out more by coming over to our stand and saying hello!

26 Thank You Presenter: Thurstan Johnston Presales Engineer, EMEA