Utilizing Indicators of Compromise (IOCs) and other threat intelligence received from FireEye's MVX engine, Digital Guardian correlates that intelligence and creates rules for endpoint agents to search out any potentially compromised machines. Both solutions are engineered to quickly contain and block further infections in real-time across the network and endpoint. Digital Guardian also submits suspicious artifacts collected on host systems for analysis in the FireEye Malware Analysis System (MAS), with results of the analysis utilized by both solutions for containment and prevention of new infections.
According to Dan Geer, security expert and CISO of In-Q-Tel, the strategic investment arm of the Intelligence Community, "Detection and correlation of threats collected from as many locations as possible across the enterprise offers the best defense against advanced malware. Digital Guardian's integration with FireEye's solutions is designed not only to enable security teams to detect, analyze and understand when and how they are being attacked, but also offers the most advanced set of prevention and containment controls to stop those attacks."
Manish Gupta, senior vice president of products at FireEye, added, "By integrating our respective solutions, our customers enhance their investment in FireEye with Digital Guardian's understanding of sensitive data and deep visibility and control on the endpoint. The result is a streamlined workflow engineered to stop advanced malware and prevent loss of sensitive data both on and off the corporate network."
The integrated Verdasys and FireEye solution is designed to enable security teams to:
· Reduce investigation and containment time by verifying whether threats discovered on the network by FireEye have infected systems and if they have been contained on the endpoint
· Contain malware on infected hosts and prevent new infections by Digital Guardian rules based on IOCs received from FireEye
· Decrease time to containment by submitting threats discovered on the endpoint by Digital Guardian agents for detonation and validation in the FireEye MVX engine
· Protect sensitive data from being exfiltrated during an attack with Digital Guardian end point data protection control rules defined by FireEye IOC characteristics.
According to Jim Ricotta, Verdasys CEO, "Enterprises looking to protect intellectual property and other sensitive data are finding that Digital Guardian and FireEye are fundamental components of their multi-layered defense due to their ability to accurately identify and block previously unknown attacks in real time. Now, these organizations can detect infections even when devices are outside the corporate network or when they are brought back to the network, so they can secure all personal and company-owned devices across their entire computing environment."
Verdasys (www.verdasys.com) provides Enterprise Information Protection solutions and managed services to secure sensitive data and assure the integrity of business processes, enabling midsize and global businesses to successfully compete in collaborative and mobile environments. Digital Guardian, a Leader in Gartner's 2012 Magic Quadrant for Content-Aware Data Loss Prevention, is a proven technology platform that provides complete, policy-based data lifecycle monitoring, classification, forensics and control on endpoints and servers, virtual machines and enterprise applications, networks, mobile devices and cloud environments. Digital Guardian protects IP and regulated data from compromise by insiders, contractors, partners and targeted cyber attacks. Since 2003, millions of Digital Guardian agents have been deployed to protect critical data for global leaders in financial services, insurance, technology, manufacturing and healthcare industries.