Zscaler, a provider of cloud-based security solutions, today announced a new solution designed to help enterprises detect and remediate advanced persistent threats (APTs).
Dubbed Zscaler for APTs, the company says its new offering provides protection for any user on any device in any location with proactive protection and real-time advanced security analytics.
“Many security vendors have overhyped APTs, blurring its definition to distract the market from the fact that their solutions are simple features that should be included in a greater platform,” said Michael Sutton, vice president of security research, Zscaler. “Advanced threats are more than just social engineering, zero-day attacks or data exfiltration; they are the sum of these parts and more, requiring a comprehensive solution to address each individual attack surface as a whole.”
Behavioral analysis is an important feature for identifying advanced threats, Zscaler explained, but it is not a complete solution on its own. The results from behavioral analysis should be combined with other preventative and detective controls to ensure comprehensive protection.
Zscaler says its APT protection solution provides multiple layers of security protection and leverages a broad range of inspection technologies and techniques.
The company further explained that its solution “consolidates the commoditized features of existing point appliances” to provide a security platform that addresses all major phases of APT defense:
• Protection – Zscaler for APTs delivers proactive and real-time protection from potentially malicious code, enhancing its static anti-virus and vulnerability shielding with its newly-introduced dynamic behavioral analysis engine to block initial infections.
• Detection – Zscaler for APTs bolsters its bi-directional, in-line traffic scanning with its newly-introduced DNS analysis to detect suspicious traffic patterns indicative of botnet callbacks to minimize dwell time of APTs, identifying botnets before they can take root.
• Remediation – Zscaler for APTs augments its advanced “big data” security analytics with its newly-introduced integration into leading security information event management (SIEM) solutions, providing information security teams with the real-time global visibility into network, payload and endpoint traffic required to isolate botnets and remove infection.
Zscaler’s APT solution uses the same behavioral analysis engine featured sused to conduct security research by ThreatLabZ, Zscaler’s security research team.
Zscaler for APTs is available now.
Related News: Seculert Launches Free Cloud-based APT Detection Service
Related News: Palo Alto Networks Launches Private Cloud Option for APT Protection
Related Insight: Detecting APTs By Analyzing Network Traffic
