Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Malware & Threats

Zscaler Launches Cloud-based APT Protection Solution

Zscaler, a provider of cloud-based security solutions, today announced a new solution designed to help enterprises detect and remediate advanced persistent threats (APTs).

Zscaler, a provider of cloud-based security solutions, today announced a new solution designed to help enterprises detect and remediate advanced persistent threats (APTs).

Dubbed Zscaler for APTs, the company says its new offering provides protection for any user on any device in any location with proactive protection and real-time advanced security analytics.

ZScaler“Many security vendors have overhyped APTs, blurring its definition to distract the market from the fact that their solutions are simple features that should be included in a greater platform,” said Michael Sutton, vice president of security research, Zscaler. “Advanced threats are more than just social engineering, zero-day attacks or data exfiltration; they are the sum of these parts and more, requiring a comprehensive solution to address each individual attack surface as a whole.”

Behavioral analysis is an important feature for identifying advanced threats, Zscaler explained, but it is not a complete solution on its own. The results from behavioral analysis should be combined with other preventative and detective controls to ensure comprehensive protection.

Zscaler says its APT protection solution provides multiple layers of security protection and leverages a broad range of inspection technologies and techniques.

The company further explained that its solution “consolidates the commoditized features of existing point appliances” to provide a security platform that addresses all major phases of APT defense:

Protection – Zscaler for APTs delivers proactive and real-time protection from potentially malicious code, enhancing its static anti-virus and vulnerability shielding with its newly-introduced dynamic behavioral analysis engine to block initial infections.

Detection – Zscaler for APTs bolsters its bi-directional, in-line traffic scanning with its newly-introduced DNS analysis to detect suspicious traffic patterns indicative of botnet callbacks to minimize dwell time of APTs, identifying botnets before they can take root.

Remediation – Zscaler for APTs augments its advanced “big data” security analytics with its newly-introduced integration into leading security information event management (SIEM) solutions, providing information security teams with the real-time global visibility into network, payload and endpoint traffic required to isolate botnets and remove infection.

Zscaler’s APT solution uses the same behavioral analysis engine featured sused to conduct security research by ThreatLabZ, Zscaler’s security research team.

Zscaler for APTs is available now.

Related News: Seculert Launches Free Cloud-based APT Detection Service

Related News: Palo Alto Networks Launches Private Cloud Option for APT Protection

Related Insight: Detecting APTs By Analyzing Network Traffic

Written By

Click to comment

Expert Insights

Related Content

Malware & Threats

Microsoft plans to improve the protection of Office users by blocking XLL add-ins from the internet.

Cybercrime

CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts.

Cybercrime

Chinese threat actor DragonSpark has been using the SparkRAT open source backdoor in attacks targeting East Asian organizations.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Malware & Threats

Cybercrime in 2017 was a tumultuous year "full of twists and turns", with new (but old) infection methods, a major return to social engineering,...

Cyberwarfare

Russia-linked cyberespionage group APT29 has been observed using embassy-themed lures and the GraphicalNeutrino malware in recent attacks.

Malware & Threats

Norway‎-based DNV said a ransomware attack on its ship management software impacted 1,000 vessels.