Analytics
2/24/2014
09:17 AM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

McAfee Announces New Product That Stops Advanced Threats In Milliseconds

At the core of McAfee Threat Intelligence Exchange is a new virtual appliance that connects multiple enterprise security platforms

SANTA CLARA, Calif.--(BUSINESS WIRE)--McAfee today announced, McAfee Threat Intelligence Exchange, the first in the industry to orchestrate local and global threat intelligence information and enterprise-wide security products into one cohesive integrated security system. McAfee Threat Intelligence Exchange brings a unique approach and capability in the elimination of the gap between encounter to containment of advanced targeted attacks.

By sharing threat information across controls and directing preventative actions in real-time, McAfee is able to provide immediate protection against the threats posed by advanced targeted attacks across both network and endpoint controls. What has traditionally taken days, weeks or months now only takes milliseconds. McAfee Threat Intelligence is a significant evolution of the industry-first Security Connected Platform that was delivered by McAfee in 2011.

Recent high profile data breaches highlight the challenge that organizations face in understanding and combating advanced targeted attacks. In many cases, the breach is not discovered for days or weeks after the initial compromise has occurred, and often far after proprietary and personally identifiable information has been extracted. The ability to quickly spot and pre-empt advanced threats is now a business differentiator as companies seek to protect their intellectual property and assure customers that their data is safe and secure.

Building on McAfee's leadership experience across network, endpoint and data security, McAfee Threat Intelligence Exchange allows organizations to orchestrate security controls to identify patterns, immunize assets against newly-identified malware, and prevent data exfiltration in real-time - optimizing security for each organization. McAfee Threat Intelligence Exchange leverages a unique capability called SmartListing that allows broad security controls to extract and exchange contextual information from such examples as certificate information, reputation data, file characteristics and application behaviors within the environment. The resulting actionable intelligence allows the organization to accurately and instantly contain or allow any payload across the organization's security controls. Thus for the first time, as threats appear, defenses instantly shield assets much more intelligently and without the limitations of signatures or cloud lookups.

McAfee Threat Intelligence Exchange combines local threat data with global intelligence data sources such as McAfee Global Threat Intelligence and other third party and partner fees, to offer truly comprehensive threat intelligence for businesses. The collective package provides unprecedented identification of targeted attacks and enables customized controls that protect automatically based on each organization's unique risks and priorities. This degree of precision offers the most complete and immediate protection against determined criminals and actors behind the most damaging attacks.

Delivering on the Security Connected Vision:

With this announcement, the McAfee Security Connected platform now includes a real-time data exchange messaging framework. The McAfee data exchange layer provides real-time context sharing and orchestration, as well as the collective threat intelligence and adaptive threat prevention in McAfee Threat Intelligence Exchange. These industry-leading breakthroughs boost the protective performance of existing McAfee solutions from endpoint, network and analytics environments, and also deliver a standardized data framework by which partners, competitors, and other third party products will be able to orchestrate together in halting advanced threats.

"With complex threats attacking businesses every day, our customers need this adaptive threat prevention now," said Mike Fey, worldwide chief technology officer for McAfee. "We are making it easier to tie together intelligence and actions so that our customers' existing products deliver greater protection while simultaneously finding ways to cut operational costs. We are delivering the technology that others are just starting to think about to harden the platform upon which future security products will depend."

Features & Benefits:

The McAfee Threat Intelligence Exchange solution provides new approaches for answering increasingly urgent problems customers face more often as targeted attacks increase.

· Replaces costly manual tasks with automated, real-time data exchange that allows security components to operate as one to share security intelligence in real-time across endpoint, network and other security components.

· Brings immediate visibility to the presence of advanced targeted attacks in the organization to answer the question "Am I exposed?"

·

· Protects based on the most complete collective threat intelligence built out of global and third party intelligence data sources combined with local threat intelligence and customized organizational knowledge.

· Enables endpoints to share contextual intelligence with each other to gain greater environmental threat context which improves accuracy and effectiveness.

·

· Integration simplicity, through McAfee's data exchange layer, reduces implementation and operational costs and enables unmatched operational effectiveness.

·

Availability:

Product is expected to be available in Q2 2014. For more information on McAfee Threat Intelligence Exchange visit www.mcafee.com/TIE.

About McAfee

McAfee, a wholly owned subsidiary of Intel Corporation (NASDAQ:INTC), empowers businesses, the public sector, and home users to safely experience the benefits of the Internet. The company delivers proactive and proven security solutions and services for systems, networks, and mobile devices around the world. With its Security Connected strategy, innovative approach to hardware-enhanced security, and unique Global Threat Intelligence network, McAfee is relentlessly focused on keeping its customers safe. http://www.mcafee.com

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
Partner Perspectives
What's This?
In a digital world inundated with advanced security threats, Intel Security seeks to transform how we live and work to keep our information secure. Through hardware and software development, Intel Security delivers robust solutions that integrate security into every layer of every digital device. In combining the security expertise of McAfee with the innovation, performance, and trust of Intel, this vision becomes a reality.

As we rely on technology to enhance our everyday and business life, we must too consider the security of the intellectual property and confidential data that is housed on these devices. As we increase the number of devices we use, we increase the number of gateways and opportunity for security threats. Intel Security takes the “security connected” approach to ensure that every device is secure, and that all security solutions are seamlessly integrated.
Featured Writers
White Papers
Cartoon
Current Issue
Dark Reading's October Tech Digest
Fast data analysis can stymie attacks and strengthen enterprise security. Does your team have the data smarts?
Flash Poll
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-3366
Published: 2014-10-31
SQL injection vulnerability in the administrative web interface in Cisco Unified Communications Manager allows remote authenticated users to execute arbitrary SQL commands via a crafted response, aka Bug ID CSCup88089.

CVE-2014-3372
Published: 2014-10-31
Multiple cross-site scripting (XSS) vulnerabilities in the CCM reports interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90589.

CVE-2014-3373
Published: 2014-10-31
Multiple cross-site scripting (XSS) vulnerabilities in the CCM Dialed Number Analyzer interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCup92550.

CVE-2014-3374
Published: 2014-10-31
Multiple cross-site scripting (XSS) vulnerabilities in the CCM admin interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90582.

CVE-2014-3375
Published: 2014-10-31
Multiple cross-site scripting (XSS) vulnerabilities in the CCM Service interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90597.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Follow Dark Reading editors into the field as they talk with noted experts from the security world.