At the RSA Conference, McAfee announced expanded capabilities to find, freeze, and fix advanced threats faster to win the fight against advanced and evasive targeted attacks.
Part of the McAfee Security Connected approach, the McAfee Comprehensive Threat Protection solution tightly binds and shares threat intelligence and workflows across endpoints, network and the cloud. It provides protection, performance, and operational savings that are not possible from point products, which aren’t designed to optimize security and risk management as an IT function and carry the overhead of manual integrations.
Since last year McAfee has enhanced the countermeasures available to customers and added new analytics, context and orchestration to fully integrate and automate the threat protection processes.
- Uncovers over 800 million advanced network evasion techniques: Next Generation Firewall detects malicious traffic that has attempted to disguise itself by splitting into pieces that travel across a variety of protocols through different layers of the OSI stack. Now, the McAfee Next Generation Firewall can communicate with the Security Connected platform to educate endpoints and other network security products about these events.
- More details about malware: McAfee Advanced Threat Defense combines reputation, and real-time emulation defenses with in-depth static code and dynamic, malware analysis (sandboxing) to provide the most detailed assessment and data on malware classification. Integration with McAfee Threat Intelligence Exchange can share all these details plus dynamic file and IP reputation, prevalence, and malware to drive counter-responses and educate each security component in the corporate environment to recognize and block emerging and targeted threats.
- Find, freeze, and fix within milliseconds: Unlike other sandboxing technologies, McAfee Advanced Threat Defense can directly receive files for analysis from and send results to endpoint, network, and management systems, leveraging the Security Connected platform to optimize advanced malware detection and analysis and stop malware in its tracks—with no time or effort spent on integration.
Continuing to expand its Comprehensive Threat Protection solution, McAfee recently announced McAfee Threat Intelligence Exchange which orchestrates local and global threat intelligence information and enterprise-wide security products into one cohesive integrated security system to eliminate the gap between encounter and containment of advanced targeted attacks. The ability to quickly spot and pre-empt advanced threats is now a business differentiator as companies seek to protect their intellectual property and assure customers that their data is safe and secure.
The McAfee Security Connected strategy integrates data and workflows for automated response. Threat intelligence shared between the network and endpoint helps McAfee countermeasures to immediately shut down command-and-control communications and quarantine compromised systems. For example, the McAfee Network Security Platform can use guidance from the McAfee Enterprise Security Manager to block communications with infected hosts.