FireEye Announces the File Malware Protection System to Detect and Eliminate Malware Resident on File Shares
New offering stops malware introduced by users collaborating through Web mail, online file transfer tools, personal storage devices, or other manual means
File Malware Protection System (MPS) that detects and eliminates advanced malware found on file shares. The File MPS is an industry-first in preventing the lateral spread of malicious code into central data stores. With FireEye File MPS, enterprises now have a solution that addresses the security weaknesses introduced by Web-based email, social networking, online file transfer tools, personal storage devices and other manual means that bring files into the network.
The File MPS extends the FireEye security platform to protect companies and federal agencies from another key stage of an advanced targeted attack. The File MPS complements the Web MPS and Email MPS appliances, which protect against Web-based and email-based threat vectors, by addressing the malware resident on file shares used by cybercriminals to establish a long-term foothold in the network and to infect systems, even those without access to the external Internet. Now, enterprises can not only stop Web and email attacks, but can also detect and eliminate the malware resident on file shares that target sensitive information.
"Advanced targeted attacks are a real and present danger representing a serious threat to enterprises, particularly a higher potential for data loss and industrial espionage,” said Lawrence Orans, Research Director, Gartner, Inc. “Gartner believes that cybercriminals will continue to use all available techniques during an advanced targeted attack to successfully bypass traditional security."
The File MPS security appliances analyze file shares using the patented FireEye Virtual Execution (VX) Engine that detects zero-day malicious code embedded in all common file types. The File MPS performs recursive, scheduled, and on-demand scanning of accessible network file shares to identify and quarantine resident malware without impact to corporate productivity. This halts a key stage of the advanced attack lifecycle.
The FireEye security platform is the only comprehensive solution to address advanced targeted attacks that use sophisticated malware and APT tactics, not only to penetrate defenses, but also to spread laterally through file shares. Many corporate data centers remain vulnerable to advanced malware because of the ineffectiveness of traditional defenses like anti-virus. Criminals leverage this vulnerability in the current security architecture to spread into network file shares, embed malicious code in the vast data stores and become a persistent threat vector to infect and re-infect key systems even after IT remediates them.
“Our new product offering gives FireEye the unique ability to offer the complete answer to protection against APT attacks,” said Ashar Aziz, FireEye founder, CEO and CTO. “With the addition of File MPS to FireEye Malware Protection System, we have changed the protection landscape to prevent advanced targeted attacks from penetrating defenses as well as from spreading into file shares and establishing long-term footholds in networks.”
FireEye is uniquely able to deal with the challenges of multi-vector, multi-stage attacks because the Malware Protection System shares malware threat data in real-time across all its appliances through the Central Management System and also through the global Malware Protection Cloud. Each FireEye product features the VX engine that provides state-of-the-art, signature-less analysis using the most sophisticated virtual machines. With the inclusion of File MPS, FireEye Malware Protection System now stops advanced targeted attacks across the Web and email threat vectors and malware resident on file shares, to build a 360-degree, stage-by-stage analysis of an advanced attack, from system exploitation to data exfiltration, to most effectively stop would-be APT attackers.
Pricing and Availability
The FireEye File Malware Protection System will be available in the second quarter of 2012 with two models depending on the number of files shares to be secured. Pricing begins at $54,950.
Find FireEye at RSA in booth #2117.
About FireEye, Inc.
FireEye is the leader in stopping advanced targeted attacks that use advanced malware, zero-day exploits, and APT tactics. FireEye solutions supplement traditional and next-generation firewalls, IPS, antivirus, and gateways, which cannot stop advanced threats, leaving security holes in networks. FireEye offers the industry’s only solution that detects and blocks attacks across both Web and email threat vectors as well as latent malware resident on file shares. It addresses all stages of an attack lifecycle with a signature-less engine utilizing stateful attack analysis to detect zero-day threats. Based in Milpitas, California, FireEye is backed by premier financial partners including Sequoia Capital, Norwest Venture Partners, and Juniper Networks.
# # #
FireEye is a trademark of FireEye, Inc. All other brands, products, or service names are or may be trademarks or service marks of their respective owners