SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
Story image
Proofpoint and CrowdStrike partner on endpoint protection integration
Thu, 5th Sep 2019
FYI, this story is more than a year old

Cybersecurity and compliance company Proofpoint has announced a partnership and integration with cloud-delivered endpoint protection provider CrowdStrike to provide organisations with advanced threat protection across email and endpoints.

In the initial integration, Proofpoint's advanced Targeted Attack Protection (TAP) security intelligence will feed threat intelligence on malicious email attachments into CrowdStrike Falcon to further enhance device security and stop attackers.

“Companies are struggling day-to-day with protecting their organisations from advanced threats. A new approach is needed to secure devices and data against sophisticated malware and malware-free attacks,” says CrowdStrike business development and channels vice president Matthew Polly.

“We are excited to partner with Proofpoint to provide multi-layer threat protection, so that organisations may gain immediate visibility and context into adversaries and attack vectors to provide better protection for enterprise endpoints.

The integration between Proofpoint and CrowdStrike will be quick and simple to enable, via cloud-to-cloud APIs, and ensure that joint customers can leverage their detection engines working in concert to stop attacks.

In the first technology integration, Proofpoint will check potentially malicious attachments with CrowdStrike Falcon Intel and will add new hashes to the customer's custom intelligence.

An alert will then be created if new related malicious content tries to execute on the device.

“Proofpoint and CrowdStrike customers will benefit from our strategic partnership and threat intelligence integration as security teams work to protect their people from increasingly targeted malware attacks,” says Proofpoint cybersecurity strategy executive vice president Ryan Kalember.

“More than 90% of attacks are initiated by email, and nearly all require a user to click on a URL or malicious attachment to activate them, rather than exploiting a technical vulnerability. Our integration with CrowdStrike will provide our joint customers with automated context and visibility to further ensure all endpoints are protected from malicious attachments.

Joint customers look to Proofpoint Targeted Attack Protection's threat intelligence to help security teams stay ahead of attackers by detecting, analysing, and blocking advanced threats.

This includes advanced email threats delivered through malicious attachments and URLs, zero-day threats, polymorphic malware, weaponised documents, and phishing attacks.

These capabilities complement CrowdStrike's Falcon endpoint protection, which unifies next-generation antivirus (NGAV), endpoint detection and response (EDR), managed threat hunting capabilities, and security hygiene — all contained in a single sensor that is cloud-managed and delivered.

The CrowdStrike Falcon platform's single lightweight-agent architecture leverages cloud-scale artificial intelligence (AI) to offer real-time protection and visibility across the enterprise and provide an innovative approach to handle advanced threats.

CrowdStrike Falcon combines automated intelligence and human analysis to deliver unparalleled threat intelligence that allows organisations to gain deep, real-time visibility into endpoint activity, threat investigation and remediation to quickly stop breaches.