Einleitung
In the recent past, in-house sandboxing techniques have been used in company networks to detect malware in files. However, deploying an appliance for sandboxing and analyzing local network files is not scalable, and it also adds severe latency and administrative overhead, which results in badly implemented security. Additionally, enhanced inspection techniques that send notifications and adequate logging are required to defend against today’s file injections. By immediately notifying the administrator when an attack occurs, they have a better chance of combating threats.
Why Anti-Virus Scanning Isn’t Enough
While these signature-based legacy systems are still important as a first line of defense for prefiltering network traffic, organizations still need an additional security layer to protect against targeted malware.
The Barracuda Difference
Barracuda Advanced Threat Protection is available on Barracuda’s entire portfolio of security products and processes more than 20 million requests per day. This results in one of the world’s most comprehensive databases of known bad IP addresses, “spyware domains,” and command and control servers used by botnets.
Inspection
The following MIME types are inspected for malware:
application/pdf
application/msword
application/vnd.ms-powerpoint
application/vnd.ms-excel
application/x-msaccess
application/vnd.openxmlformats-officedocument.presentationml.presentation
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
application/vnd.ms-cab-compressed
application/vnd.microsoft.portable-executable
application/vnd.openxmlformats-officedocument.wordprocessingml.document
application/rtf
Detailed Logging
Barracuda Advanced Threat Protection at a Glance
KEY FEATURES | THE BARRACUDA ADVANTAGE |
---|---|
Identify zero-day malware exploits, ransomware, targeted attacks, advanced persistent threats, and other advanced malware that routinely bypasses traditional signature-based IPS and anti-virus engines. | Easy to deploy, easy-to-use, and affordable Advanced Threat Protection (ATP). |
Blocking of active content in Microsoft Office and PDF documents. | No new equipment needed. |
Full interoperability with the integrated SSL Inspection: Files can be extracted and checked to detect advanced malware in the encrypted stream. | Information on identified malware is centrally stored and shared to optimize emulation. |
Available for hardware and virtual appliances, as well as for Microsoft Azure and Amazon AWS. | Barracuda ATP and malware protection are available as an affordable bundle subscription. |