Most security vendors are really in denial. They offer you products aimed at identifying or dealing with malware in your network. Their message often is that you’ve been breached, you just don’t know it.
I would agree with them, but it doesn’t have to be the case!
The problem is AV. We all rely on it, some more than others, but it’s only really any good at stopping the lazy would-be hacker – the one that’s just searching out the people that don’t bother patching and updating AV.
The hungry hackers are developing their own new zero day exploits, enhancing old code and making new variants.
Which is why I’m really excited about Palo Alto Networks Traps, their new approach to preventing zero day malware.
Traps understands the twenty-four different techniques on which exploits are based (that’s right, 10,000s of exploits based on just a few techniques), and so even for zero day exploits, it will recognise something and stop it in its tracks.
Tie that capability in with being able to apply policies on endpoints to reduce the risk, as well as checkingwith their WildFire service to know if a file is malicious, and you really are reducing your organisation’s risk.
The downside? It’s only available for Windows, but that does include XP, helping extend the life of that aging operating system.
If you want more information, check out here: https://www.teneo.net/uk/technology/palo-alto-networks-traps/