Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Malware & Threats

Palo Alto Networks Leverages Cyvera Acquisition in New Endpoint Protection Solution

Enterprise network security firm Palo Alto Networks today announced the availability of a new security solution designed to prevent sophisticated cyber attacks targeting endpoints.

Enterprise network security firm Palo Alto Networks today announced the availability of a new security solution designed to prevent sophisticated cyber attacks targeting endpoints.

Called “Traps”, the new endpoint security solution is built on technology gained from Palo Alto’s $200 Million acquisition of Tel-Aviv, Israel-based Cyvera in March 2014.

Palo Alto Networks Logo

Traps (PDF) was designed to proactively block all attacks targeting endpoints, including unknown malware and zero-day exploits. Cyvera previously claimed that its approach has been so powerful that they had successfully stopped every published zero-day attack since they first began deploying their product.

Reactive security models result in a never-ending chase after the thousands of new malware that emerge each day, or expanding number of software vulnerabilities that can be used to exploit an endpoint, Palo Alto Networks explained.

While the solution is appropriate for deployment in enterprise networks, Trips is also very effective in protecting Critical infrastructure organizations that run ICS/SCADA systems.

Because these systems are frequently distributed over large areas and typically rely on legacy equipment, they often cannot maintain a consistent patching routine and are vulnerable to cyber attacks.

“Cyber attacks utilize ICS-SCADA systems architectural features to target data flow in the operational network (PLCRTU, MTU, data and application servers, and HMI), as well as on the corporate network,” the security firm explained. “These attacks can perform silent espionage, gathering genuine system information through monitoring and exfiltration techniques, or launch more serious assaults that not only exfiltrate data, but distort it to sabotage your system.”

Related: Learn More at the ICS Cyber Security Conference

Advertisement. Scroll to continue reading.

Traps protects ICS/SCADA systems by obstructing attacks in the exploitation phase and terminating them before they can execute and penetrate the critical infrastructure, Palo Alto Networks said.

Platform Integration

Through integration with Palo Alto Networks’ WildFire service, the malware protection capabilities offered by Traps are enhanced by leveraging the company’s Threat Intelligence Cloud.

WildFire detects unknown malware, zero-day exploits, and Advanced Persistent Threats (APTs) by executing them in a cloud-based virtual sandbox environment.

“The integration of Traps with the Palo Alto Networks Threat Intelligence Cloud brings security of the network and endpoint together under a single common architecture, known as the Palo Alto Networks enterprise security platform,” the company explained.

Offered as a subscription service, Traps is available immediately from Palo Alto Networks channel partners.

The offering is inclusive of all functionality including exploit prevention, malware prevention through WildFire integration, forensics, and premium support, the company said.

Written By

For more than 15 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Cybercrime

The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Malware & Threats

The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently...

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...