End users – it’s one of the easiest ways hackers can infiltrate your system. What makes this problem worse is that most of these end users we try to protect are “stupid” about their own security or their company’s. To modify a George Carlin quote, “Think of how stupid the average ‘end user is,’ and realize half of them are stupider than that.”
Most try to infiltrate an end user by conducting a simple spear phishing attack. This means using an email address through – what appears to be – a trusted source, with some hidden goodies embedded in – what looks like – a harmless attachment. The end user downloads the attachment, an executable is installed, moves laterally, acquires a hash from someone with admin privileges to your company’s domain controller, and… voilà! The hacker has all the keys to your kingdom, and begins funneling intellectual property (IP) out of your company easily, effectively, and hidden from you.
So how do we stop any of this? Traditional antivirus security? Um… no. Traditional approaches utilize blacklists that scan for “known” malicious code that can be embedded in the executables a hacker would like to run. But what if a hacker decided to modify the code slightly? Well, all of a sudden those handy blacklists are as good as Carrot Top’s stand up – outdated, predictable and out-of-touch.
So what’s the solution? Enter Bit9’s Advanced Threat Protection – that uses application control and whitelisting. By using a trust-based security approach, to detect, protect, and measure your IT ecosystem, you can defend against advanced persistent threats (APT) by pre-approving applications and ensuring trust on your networks.
The Tolly Group (click here to view full report), a third-party test lab, found that in their independent tests, Bit9 Parity Suite blocked all forms of tested attacks. Other security products like Symantec SEP 12.1 only stopped three out of five attacks, with McAfee Endpoint Protection Suite only blocking one out of the five. In the case of Windows Server 2003 Edition SP1, Symantec and McAfee’s security solutions were incapable of securing the test server, which allowed each type of attack to gain access and control.
Bit9 Parity outperforms both Symantec and McAfee solutions. Here’s how:
- Bit9 successfully stopped 100 percent of the attacks.
- Symantec SEP 12.1 failed to stop 40 percent of the attacks.
- McAfee Endpoint Protection Suite failed to stop 80 percent of the attacks.
So if you’re looking for true trust-based application control, securing yourendpoints, protecting your servers, worried about losing control of your domain controllers, or worried about losing the most valuable asset your company has: its IP. Look at Bit9 Parity Suite. Because in case you weren’t paying attention, AV is dead and Advanced Threat Protection is the future.