Connect with us

News

SYMANTEC’S NEW ARSENAL TO FIGHT TARGETED ATTACKS

Published

on

Updated : November 26, 2013 0:0  ,
By Stephen Trilling, Senior Vice President, Chief Technology Officer, Symantec
Symantec bolsters targeted attack protection portfolio, network threat protection for Mac

Defending against sophisticated targeted attacks is now the norm, and it’s not just large companies that are being impacted. These state-sponsored attackers are going after smaller companies now too.  Why is that?  Well, small companies often have business relationships with larger companies that may be the ultimate target of attackers. And, because small companies may have fewer security safeguards than their larger partners, they make a good target for attackers.  So how can businesses – large and small – protect themselves against these sophisticated, targeted attacks?

The answer is through a combination of cutting-edge security technology and a vast intelligence network that monitors our Symantec customers’ networks, and the attackers, around the clock. Our aim is to block attacks no matter what their target is or how they try to get in – at your gateway, on the endpoint and in the data centre.  And we’re raising the bar every day.  I’m excited to discuss here two powerful new innovations that we’ve just added to Symantec’s arsenal against targeted attacks — Disarm in Symantec Messaging Gateway and Network Threat Protection in Symantec Endpoint Protection for Mac computers.

Why it matters

Developed by Symantec Research Labs, Symantec’s advanced research division, our new Disarm technology in Messaging Gateway 10.5 uses a first-of-a-kind technique to protect companies from targeted attacks. Most targeted attacks are now delivered in the form of malicious, but seemingly innocuous, documents delivered over email. Each such malicious document, e.g., a PDF, DOC or XLS file, contains an embedded attack, and when a victim simply views the document, their computer is automatically and silently compromised.

Traditional protection technologies attempt to scan documents for suspicious characteristics.  The problem is that many of these document-based attacks are purposefully crafted so they don’t look suspicious, and as a result, they go undetected. Disarm takes a whole new approach. Instead of scanning the document, it essentially makes a digital harmless “carbon copy” of every incoming email attachment/document, delivering this carbon copy to the recipient, rather than the original, potentially malicious document. The result is that the recipient is never exposed to the attacker’s malicious attachment. And the technology is extremely effective. According to Symantec research, the Disarm technology would have blocked 98 percent of attacks that exploit zero-day document vulnerabilities thus far in 2013 – these are attacks that were entirely unknown and would therefore have likely evaded all traditional scanners, heuristics, emulators and even Virtual Execution (VX) solutions. Learn more about Disarm and Symantec Messaging Gateway here.

At the endpoint, Symantec has added its advanced Network Threat Protection technology to the Mac version of our Symantec Endpoint Protection 12.1.4. Many Mac users think they’re impervious to attacks, and as a result don’t take security seriously. But the reality is that this makes Mac users a potential goldmine for targeted attackers. Symantec’s Network Threat Protection technology intercepts incoming network traffic before it can impact your Mac, looking for targeted attack exploits and automatically blocking them. It uses a patented, application-level, protocol-aware Intrusion Prevention System to not only identify and block known attacks, but also identify and block many unknown or day-zero attacks. Learn more about the Mac threat landscape and network threat protection here.

Symantec’s Targeted Attack Protection Powered by Unmatched Expertise, Global Intelligence

In addition to these new innovative technologies, Symantec’s security solutions are powered by the Symantec Global Intelligence Network (GIN) and a team of more than 550 researchers around the world. Symantec’s GIN platform collects anonymous telemetry from Symantec’s hundreds of millions of customers and sensors around the clock. Symantec uses this data – more than 2.5 trillion rows of security telemetry – to automatically discover new attacks, and monitor attacker networks. We also use this data to develop predictive, proactive protection technologies, such as Symantec’s Insight reputation technology, for our gateway, endpoint and data centre offerings. Simply put, our expertise and global intelligence and visibility bring unmatched targeted attack protection for our customers.

Symantec’s Innovative Approach to Securing the Gateway

Symantec offers a number of different messaging protection options for customers, each with advanced targeted attack protection. In addition to Symantec Messaging Gateway, which is an on-premise solution, Symantec also offers proactive targeted attack email protection via our Email Security.cloud service. This innovative, hosted service automatically filters all of your inbound and outbound email without requiring you to deploy any software or hardware in your network. Email Security.cloud offers highly advanced targeted attack protection using a number of technologies, like SKEPTIC and Real-Time Link Following.

SKEPTIC uses thousands of extremely sensitive sensors to scrutinize every email and email attachment entering or leaving your network, preventing literally tens of thousands of confirmed targeted attack attempts every year. SKEPTIC is used in conjunction with Email Security.cloud’s link-following technology. This innovative system automatically connects to suspicious URLs embedded in emails to see were they lead. Should a link lead to a targeted attack site that attempts to compromise the email recipient’s computer, the email is automatically blocked. This URL validation technology happens in real-time, before the email is delivered to the recipient, ensuring that they are protected, rather than simply informing the administrator after-the-fact.

Of course targeted attackers will try every attack vector at their disposal. Often, these attackers will contact your employees through social networks (visited via the web browser) and use this to infiltrate their machines, and subsequently your network. Symantec Web Gateway (SWG) – an innovative product that monitors all inbound and outbound web traffic – is designed to detect and block targeted attacks. SWG now leverages our patented Symantec Insight technology to automatically discover “low-reputation” files and block them before they can reach your users. Insight leverages the anonymous software adoption patterns of Symantec’s hundreds of millions of customers to automatically discover and assign a security classification to every single software file, good or bad, on the planet. It essentially uses the “wisdom of the crowds” to learn which software is trusted by users across the world, and which software is avoided or has never been seen before. Since targeted attackers use mutated and custom-crafted malware to evade traditional virus fingerprints, heuristics, emulators and Virtual Execution (VX) systems, technology like Insight is one of the only known ways to identify and block these attacks.

Symantec’s Unique Technologies Protecting the Endpoint

To protect your PCs and laptops against targeted attacks, Symantec Endpoint Protection includes powerful technologies, such as Network Threat Protection, Insight and SONAR. Network Threat Protection analyses incoming network data before it is processed by the user’s machine. As such, it can block inbound targeted attacks before they even have a chance to interact with the user or with vulnerable software on machines in your network. Symantec Endpoint Protection uses Symantec Insight to automatically block inbound software files that have a low reputation (this is the product’s default blocking policy). Finally, our patented SONAR technology automatically monitors the behaviours of all software running on protected endpoints, analysing each application’s behaviours in real-time as it runs to identify software that behaves like a targeted attack. In the last year, more than 50 percent of the all threats stopped by Symantec were stopped by these three, proactive, non-signature based technologies.

Symantec’s Solution to Protect the Physical and Virtual Data Centre

Finally, Symantec also protects your critical assets and information in the datacenter. Symantec offers Symantec Critical System Protection (CSP), a server lockdown solution designed to protect both physical and virtual infrastructure. You can install and configure CSP so it only allows known-legitimate activities on your servers and blocks all other (anomalous) activities. If a targeted attacker does compromise a server, they must – by definition – perform activities that will deviate from the norm in order to access sensitive data on the machine, or elsewhere in the data centre. CSP automatically detects and blocks those deviations, stopping the attack automatically. Only your approved software programs are allowed to run, and those programs are only allowed to perform approved behaviours, access approved resources, etc.

Symantec works around the clock to secure our customers from targeted attacks. As you’ve read, we already have a comprehensive portfolio of targeted attack defences. And we’re raising the bar every day. Our innovative new Disarm technology for Symantec Messaging Gateway and the addition of Network Threat Protection (application and protocol-aware IPS) to our Symantec Endpoint Protection for Mac product are just the latest additions to our industry-leading protection technologies.

Continue Reading

Hospitality

UAE’s Mulk International and India’s Ajeenkya DY Patil Group forge a landmark Dh100m partnership to launch the region’s first large-scale virtual hospital

Published

on

partnership healthcare

In a landmark collaboration, Mulk International from the UAE and India’s Ajeenkya DY Patil Group have acquired stakes in Mulk Med Healthcare to become equal shareholders and launch what will be the region’s first large-scale virtual hospital of its kind with more than 20,000 doctors on board.  Both groups have further pledged an investment to the tune of AED 100 million to revolutionise healthcare in the MENA and Asia-Pacific regions. This strategic partnership is set to redefine healthcare delivery by leveraging virtual solutions to enhance access and provide comprehensive services to millions.

Dr. Nawab Shafi Ul Mulk, Founder & President of Mulk Med Healthcare, emphasized the transformative vision of this collaboration: “Our partnership and shared vision with the DY Patil Group is a major landmark agreement which signifies a shared dedication to rapidly evolving innovation and inclusivity in healthcare.”

The new Initiative introduces Mulk Med Virtual Hospitals ecosystem across the globe, one that has already been implemented in countries like Zimbabwe and Papua New Guinea and is in advanced stages of implementation in other territories. The comprehensive healthcare platform is also aided by Mulk Med App and video conferencing system available in 170+ countries currently, offering multiple essential services including 24/7 telehealth with doorstep free delivery of discounted medicines, also facilitating lifesaving smart ambulances, mobile clinics, and round-the-clock home care.

Transforming Healthcare Delivery in the region

According to Dr. Ul Mulk, these innovations are designed to improve healthcare accessibility, providing unmatched convenience for both urban and remote patients. Patients will benefit from virtual 24/7 consultations from over 20,000 doctors on board globally along with more than 500 pharmacies and service providers. Additionally, non-insured patients and UAE visitors can avail huge discounts on laboratory, radiology, hospital admissions and surgeries besides doorstep medicines, wellness, and aesthetics using the newly launched Mulk Medicare Privilege Health Card for the most affordable services that also give users access to longevity & precision medicine centres and genomics labs.

Shaji Ul Mulk, Chairman of Mulk International said: “Our global investments underscore Mulk Group’s long-standing commitment to driving impactful societal change.  We are dedicated to fostering partnerships with local communities and governments to ensure sustainable and inclusive growth.”

The initiative is also set to redefine emergency response with lifesaving smart ambulances and will extend services to underserved communities through mobile clinics. For travellers, both in & out bound comprehensive tourist healthcare insurance will provide peace of mind with robust medical coverage, while cutting-edge ICU Pods, Mulk Vital signs devices and kiosks with advanced AI enhanced technology incorporated to continuously monitor patients with chronic diseases will optimise recovery, and enhance hospital efficiency.

Dr. Ajeenkya Patil, Chairman of DY Patil Group, highlighted the initiative’s significance: “We intent to facilitate medical tourism strong demand in India from Africa & other regions in our newly build world class Hospitals care in the Indian state of Maharashtra. Together, we aim to deliver a transformative, patient-centric healthcare ecosystem that prioritizes accessibility, affordability, and quality.”

“Innovation is key to solving the world’s healthcare challenges and Mulk Med Healthcare is rightly poised to embark on the global expansion to bring affordability and top notch  equitable healthcare facilities to one and all. Mulk Medicare comprehensive hybrid model of  digital and onsite healthcare innovative solutions not only address immediate medical needs but also lay the foundation for a sustainable, scalable future in healthcare,” added Dr. Shafi Ul Mulk.

Continue Reading

Financial

Fujairah Digital Government and Torry Harris Business Solutions sign MoU to support digital transformation initiatives

Published

on

Fujairah Digital Government

Torry Harris Business Solutions Private Limited (THBS) signed a Memorandum of Understanding (MoU) with Fujairah Digital Government to accelerate the Emirate’s digital transformation efforts. This agreement underscores the collaboration in digital transformation in Fujairah, leveraging the latest technologies and innovations in alignment with the emirate’s vision to enhance government services and better serve its citizens.

The MoU was officially signed by Sheikh Engineer Mohammed bin Hamad bin Saif Al Sharqi, Director General of Fujairah Digital Government, and Shivdayal Charan, Director and Legal Representative of Torry Harris Business Solutions, in a move to foster collaboration and knowledge exchange in digital governance and best practices, aligning with the UAE’s vision to become a global leader in delivering digital government services.

Rabih Nasr, Vice President of Torry Harris Business Solutions in the Middle East, expressed his enthusiasm for the partnership, stating: “We are honored to work alongside Fujairah Digital Government to achieve their strategic goals of enhancing digital services and citizen engagement. This MoU reflects our long-standing commitment to the UAE, where we have been operating since 2002, and demonstrates our shared vision of empowering government entities to better serve their citizens through integrated and seamless digital platforms.”

Continue Reading

News

UAE National Day: Women Choice applauds UAE’s diversity, leadership efforts

Published

on

women choice event in the UAE

As the United Arab Emirates (UAE) prepares to celebrate its 53rd National Day, Women Choice proudly reaffirms its dedication to championing diversity, equality, and leadership across all sectors. In recognition of the UAE’s remarkable progress toward gender parity and inclusivity, Women Choice celebrates the pivotal role of women leaders in building a brighter, more equitable future.

With a strong presence in the region, Women Choice has hosted and participated in over 100 events across seven countries, half of which took place in the UAE. This milestone underscores the organization’s impactful efforts in promoting diversity and leadership, reflecting its alignment with the UAE’s vision of empowering women.

The UAE’s dedication to empowering women is evident, with women constituting 66% of public sector workers and 50% of the UAE Federal National Council (FNC) members being women – one of the highest representations globally. Women Choice echoes this spirit, advocating for inclusive leadership and equal opportunities in workplaces, education, and entrepreneurship.

Nezha Alaoui, Founder and CEO of Women Choice, reflects on the UAE’s achievements:

As we celebrate the UAE’s National Day, we also honor its remarkable progress in diversity and equality. Women Choice stands aligned with this vision, empowering women to lead, innovate, and inspire. True leadership flourishes when opportunities are inclusive and diverse perspectives are embraced.”

Women Choice’s initiatives are grounded in actionable steps to drive change, including leadership training programs, mentoring opportunities, and advocacy campaigns. Ahead of National Day, Women Choice calls on organizations and individuals to strengthen their commitment to building a more inclusive society.

  • The UAE ranked 1st in the Arab world for gender equality (World Economic Forum, 2023).
  • Women contribute to 23.5% of the UAE’s GDP, a testament to their economic leadership.
  • Female participation in STEM fields has risen to 37%, demonstrating progress in traditionally male-dominated sectors.

Through its global platform, Women Choice continues to spotlight stories of women leaders and changemakers, inspiring the next generation to break barriers and contribute to a more inclusive future.

Continue Reading

Trending

Please enable JavaScript in your browser to complete this form.

Copyright © 2023 | The Integrator