Protecting Corporate Assets from Targeted Email Crimeware: supplement your existing email hygiene protection to combat new targeted threats
November 02, 2006 (PRLEAP.COM) Technology News
ReSoft recently released a briefing document which describes the increasing incidence of targeted, company-specific crimeware attacks that are penetrating existing perimeter email hygiene systems. Perpetrators are customizing worms or keystroke-recording programs for specific organization. Because these threats are custom-crafted for the targeted company, they are not widespread enough for pattern-development labs to create associated signatures. Consequently, they penetrate traditional pattern-scanning protection.
Gartner Group recently released its 2006 Cyberthreat Hype Cycle concluding these threats have financial motivation, are aimed at one company or industry, are typically not publicized and are not recognized by existing signature-based approaches.
Symantec adds to this concern by citing that 92% of the most threatening malicious code is sent via SMTP e-mail. And to demonstrate the power of social engineering, testing by the U.S. Military Academy at West Point revealed that in a targeted attack, 80% of users clicked on an infected attachment, believing that it was an important document.
The Avinti iSolation Server complements your existing perimeter protection by preventing these unknown threats from entering your network.
Recent Warezov Q & U worm variants are recent examples of 88 different exploits that penetrated existing perimeter protection between April & September 2006, but were blocked by the Avinti iSolation server without any virus patterns. Using virtual-machine technology to test the actual behavior of unknown e-mail attachments, new variations cannot evade the signatureless iSolation Server because it opens and runs the attachments inside a secure virtual machine triggering on malicious behavior like system registry modification or unauthorized self replication.
You can download the free white paper from:
http://www.re-soft.com/avintiwp
About ReSoft International
ReSoft International is an independent integrator and reseller of best-of-breed software technologies that address Email & Instant-Messaging Security, Regulatory Compliance and Storage Relief. ReSoft has, for over 11 years, acted as a trusted advisor to hundreds of organizations, applying these Email & IM Security tools to reduce liability risks.