Highly targeted social engineering attacks have become the new vector of choice for adaptive persistent adversaries as an undetected entry point to enterprise networks, with the ultimate goal to access highly proprietary and valuable intellectual property. Cyveillance has leveraged its proven technology and advanced threat intelligence to provide a security solution specifically designed to detect highly targeted social engineering attacks. Once an email has passed through the traditional email gateway, SEPA takes security one step further and inspects all email for indicators of social engineering attacks. Unlike existing enterprise security solutions that lack the key intelligence to effectively recognize a targeted, highly customized social engineering attack, SEPA is able to effectively examine the content and context of an email along with the methods and behavior of embedded Web page links to judge the trustworthiness of the email.
“Online criminals have graduated from stealing individual identities and single bank accounts, and have turned their sights on high-value employees that have access to valuable corporate intellectual property and information assets,” said Manoj Srivastava, Chief Technology Officer for Cyveillance. “The benefit of SEPA is that it allows organizations to put a new layer of security in place to protect against infiltration attempts before they even reach their intended target. This not only takes the erroneous click of an email out of the equation, it gives organizations the ability to gain insight into the types of attacks targeting their organization.”
Online criminals use highly targeted social engineering scams that leverage social media to acquire openly available personal information on their targets. When the desired target falls prey to the attack, the malicious actors then gain undetected access to the corporate network. Once inside, the criminals extract sensitive information, which poses potential damage to the enterprise, undermines customer confidence and causes irreparable damage to the brand and more. SEPA’s unique ability to rapidly detect and protect against these targeted social engineering attacks, ensures intellectual property, sensitive information and customer data remain safe, while helping organizations preserve revenue, business productivity and customer trust.
"With the rise of adaptive persistent adversaries and chaotic actors changing the threat landscape, organizations using conventional means of threat assessments and enterprise security will remain vulnerable to unconventional attacks," said Josh Corman, Research Director for Enterprise Security at The 451 Group. "As attackers shift from targeting weak systems to weak applications and people, Enterprises must invest in greater visibility and detection - better matching attacker methods and motives. The best adversaries have transcended reverse engineering and embraced social engineering. The best defenders will adapt in kind."
SEPA is intelligently tailored to each enterprise environment to scan messages for suspicious indicators and key organization-specific parameters to protect against new forms of social engineering attacks. The advanced detection capabilities include:
Embedded web links are traversed and the destination web pages are evaluated for malicious behavior using advanced heuristic and behavioral analysis.
Real-time access to Cyveillance cyber intelligence on malicious web links distributing malware, hosting phishing attacks, command and control botnet servers, botnet drop sites, malicious IP addresses running rogue DNS servers and open proxies etc.
Leverage cyberspace footprint - including social networks of individuals with access to critical assets or sensitive information - to protect against targeted social engineering attacks.
For more information on the Cyveillance Social Engineering Protection Appliance™, please visit: http://www.cyveillance.com/sepa/.
Cyveillance, a world leader in cyber intelligence, provides an intelligence-led approach to security. Through continuous, comprehensive Internet monitoring and sophisticated intelligence analysis, Cyveillance proactively identifies and eliminates threats to information, infrastructure, individuals and their interactions, enabling its customers to preserve their reputation, revenues, and customer trust. Cyveillance serves the Global 2000 and OEM Data Partners – protecting the majority of the Fortune 50, regional financial institutions nationwide, and more than 100 million global consumers through its partnerships with security and service providers that include Blue Coat, AOL and Microsoft. Cyveillance is a wholly owned subsidiary of QinetiQ North America. For more information, please visit www.cyveillance.com or http://www.qinetiq-na.com.