Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

2/27/2012
07:57 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

FireEye Announces File Malware Protection System To Detect And Eliminate Malware Resident On File Shares

New offering stops malware introduced by users collaborating through Web mail, online file transfer tools, personal storage devices, or other manual means

Click here for more articles.

SAN FRANCISCO--(BUSINESS WIRE)--FireEye, Inc., the leader in stopping advanced targeted attacks, today announced its File Malware Protection System (MPS) that detects and eliminates advanced malware found on file shares. The File MPS is an industry-first in preventing the lateral spread of malicious code into central data stores. With FireEye File MPS, enterprises now have a solution that addresses the security weaknesses introduced by Web-based email, social networking, online file transfer tools, personal storage devices and other manual means that bring files into the network.

The File MPS extends the FireEye security platform to protect companies and federal agencies from another key stage of an advanced targeted attack. The File MPS complements the Web MPS and Email MPS appliances, which protect against Web-based and email-based threat vectors, by addressing the malware resident on file shares used by cybercriminals to establish a long-term foothold in the network and to infect systems, even those without access to the external Internet. Now, enterprises can not only stop Web and email attacks, but can also detect and eliminate the malware resident on file shares that target sensitive information.

“Advanced targeted attacks are a real and present danger representing a serious threat to enterprises, particularly a higher potential for data loss and industrial espionage,” said Lawrence Orans, Research Director, Gartner, Inc. “Gartner believes that cybercriminals will continue to use all available techniques during an advanced targeted attack to successfully bypass traditional security.”

The File MPS security appliances analyze file shares using the patented FireEye Virtual Execution (VX) Engine that detects zero-day malicious code embedded in all common file types. The File MPS performs recursive, scheduled, and on-demand scanning of accessible network file shares to identify and quarantine resident malware without impact to corporate productivity. This halts a key stage of the advanced attack lifecycle.

The FireEye security platform is the only comprehensive solution to address advanced targeted attacks that use sophisticated malware and APT tactics, not only to penetrate defenses, but also to spread laterally through file shares. Many corporate data centers remain vulnerable to advanced malware because of the ineffectiveness of traditional defenses like anti-virus. Criminals leverage this vulnerability in the current security architecture to spread into network file shares, embed malicious code in the vast data stores and become a persistent threat vector to infect and re-infect key systems even after IT remediates them.

“Our new product offering gives FireEye the unique ability to offer the complete answer to protection against APT attacks,” said Ashar Aziz, FireEye founder, CEO and CTO. “With the addition of File MPS to FireEye Malware Protection System, we have changed the protection landscape to prevent advanced targeted attacks from penetrating defenses as well as from spreading into file shares and establishing long-term footholds in networks.”

FireEye is uniquely able to deal with the challenges of multi-vector, multi-stage attacks because the Malware Protection System shares malware threat data in real-time across all its appliances through the Central Management System and also through the global Malware Protection Cloud. Each FireEye product features the VX engine that provides state-of-the-art, signature-less analysis using the most sophisticated virtual machines. With the inclusion of File MPS, FireEye Malware Protection System now stops advanced targeted attacks across the Web and email threat vectors and malware resident on file shares, to build a 360-degree, stage-by-stage analysis of an advanced attack, from system exploitation to data exfiltration, to most effectively stop would-be APT attackers.

Pricing and Availability

The FireEye File Malware Protection System will be available in the second quarter of 2012 with two models depending on the number of files shares to be secured. Pricing begins at $54,950.

Find FireEye at RSA in booth #2117.

About FireEye, Inc.

FireEye is the leader in stopping advanced targeted attacks that use advanced malware, zero-day exploits, and APT tactics. FireEye solutions supplement traditional and next-generation firewalls, IPS, antivirus, and gateways, which cannot stop advanced threats, leaving security holes in networks. FireEye offers the industry’s only solution that detects and blocks attacks across both Web and email threat vectors as well as latent malware resident on file shares. It addresses all stages of an attack lifecycle with a signature-less engine utilizing stateful attack analysis to detect zero-day threats. Based in Milpitas, California, FireEye is backed by premier financial partners including Sequoia Capital, Norwest Venture Partners, and Juniper Networks.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-20001
PUBLISHED: 2021-04-11
In the standard library in Rust before 1.2.0, BinaryHeap is not panic-safe. The binary heap is left in an inconsistent state when the comparison of generic elements inside sift_up or sift_down_range panics. This bug leads to a drop of zeroed memory as an arbitrary type, which can result in a memory ...
CVE-2020-36317
PUBLISHED: 2021-04-11
In the standard library in Rust before 1.49.0, String::retain() function has a panic safety problem. It allows creation of a non-UTF-8 Rust string when the provided closure panics. This bug could result in a memory safety violation when other string APIs assume that UTF-8 encoding is used on the sam...
CVE-2020-36318
PUBLISHED: 2021-04-11
In the standard library in Rust before 1.49.0, VecDeque::make_contiguous has a bug that pops the same element more than once under certain condition. This bug could result in a use-after-free or double free.
CVE-2021-28875
PUBLISHED: 2021-04-11
In the standard library in Rust before 1.50.0, read_to_end() does not validate the return value from Read in an unsafe context. This bug could lead to a buffer overflow.
CVE-2021-28876
PUBLISHED: 2021-04-11
In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. It calls __iterator_get_unchecked() more than once for the same index when the underlying iterator panics (in certain conditions). This bug could lead to a memory safety violation due to an unmet safety r...