Symantec partners to fend off zero-day attacks

Symantec joins forces with Check Point, Cisco, Palo Alto Networks

By , Network World |  Security, Checkpoint, Cisco

Symantec today announced its Advanced Threat Protection (ATP) effort for new products and managed security services to support enterprise customers in fending off targeted zero-day attacks in particular. One first step in this entails partnering with Check Point Software, Cisco and Palo Alto Networks to share threat detection information that can rapidly be integrated into Symantec endpoint protection software.

The idea is that threat information collected from these three vendors' next-generation firewalls and other sources would be shared with Symantec in its managed security services division and Symantec cloud-based threat intelligence analysis. If one of these vendors has identified some kind of newly-identified zero-day exploit, for example, a defense for that would be immediately pushed down to the network endpoints of Symantec's managed security services customers, says Symantec's director of product marketing, endpoint, messaging and security, Piero DePaoli.

This partnership alliance with Check point, Cisco and Palo Alto is just one step in what Symantec has planned to boost the effectiveness of its endpoint security products. Symantec is the global leader in endpoint anti-malware software, but DePaoli doesn't mince words when he says the era of relying on signature-based antivirus is gone for good.

+More on Network World:  Cisco announces security service linked with new operations centers | Palo Alto Networks buys endpoint security firm Cyvera for $200 million | Check Point unveils security architecture for threat-intelligence sharing +

"Core A/V is dead. It is dead," DePaoli says without reservation. A lot of the threats coming in today are unknown, such as zero-day exploits. Symantec's endpoint security products years ago evolved to the point where today about half of threats it identifies and blocks aren't related to signature-based A/V at all but are caught through other means such as behavioral or reputational analysis. But Symantec now wants to push that further in the face of stealthy attacks intended to infiltrate enterprise networks and steal data, using capabilities such as behavior analysis to block malware, and Symantec's ATP initiative is intended to evolve what the endpoint does further.

Originally published on Network World |  Click here to read the original story.
Join us:






Answers - Powered by ITworld

Ask a Question