Story image

How to keep your company safe from complex cyber threats

An advanced persistent threat (APT) is a set of stealthy and continuous computer hacking processes, often orchestrated by criminals targeting a specific entity. 

These threats often include unknown and undocumented malware, including zeroday threats.

They are designed to be evolving, polymorphic and dynamic.

Very often they are targeted to extract or compromise sensitive data, including identity, access and control information. 

While these types of attacks are less common than automated or commoditised threats that are more broadly targeted, APTs pose a serious threat.

To better detect APTs, security professionals are deploying advanced threat detection technologies, often including virtual sandboxes that analyse the behaviour of suspicious files and uncover hidden, previously unknown malware. 

However, threats are getting smarter, and many vendors’ sandbox techniques simply have not kept up.

Thus, it is a smart idea to prepare for the likely scenario that your firewall sandbox is vulnerable. 

SonicWall has you covered with their latest whitepaper, 5 Ways your Firewall Sandboxes can Fail.

This paper looks at the major vulnerabilities of firewall sandboxes and how you can prevent a major system breach.  

Symantec releases neural network-integrated USB scanning station
Symantec Industrial Control System Protection Neural helps defend against USB-borne cyber attacks on operational technology.
SingleSource scores R&D grant to explore digital identity over blockchain
Callaghan Innovation has awarded a $318,000 R&D grant to Auckland-based firm SingleSource, a company that applies risk scoring to digital identity.
Ramping up security with next-gen firewalls
The classic firewall lacked the ability to distinguish between different kinds of web traffic.
Spark Lab launches free cybersecurity tool for SMBs
Spark Lab has launched a new tool that it hopes will help New Zealand’s small businesses understand their cybersecurity risks.
Gartner names LogRhythm leader in SIEM solutions
Security teams increasingly need end-to-end SIEM solutions with native options for host- and network-level monitoring.
Cylance makes APIs available in endpoint detection offering
Extensive APIs enable security teams to more efficiently view, enrich, and contextualise real-time intelligence collected at the endpoint to keep systems secure.
SolarWinds adds SDN monitoring support to network management portfolio
SolarWinds announced a broad refresh to its network management portfolio, as well as key enhancements to the Orion Platform. 
JASK prepares for global rollout of their AI-powered ASOC platform
The JASK ASOC platform automates alert investigations, supposedly freeing the SOC analyst to do what machines can’t.