TI Safe

Class | Support & Admin | DL | Hub |

Home Technologies Malware Control

Technologies

Malware Control

Industrial Endpoint Protection

The Brazilian industrial environments are under attack, in activities of attempted intrusion and scanning doors, by hackers from all over the planet. Attacks by ransomware and other types of malware intensified in an extraordinary way in 2020, due to the Home Office and the pandemic. It is not possible to guarantee security in automation networks with a single solution or measure and the antivirus solutions on the market are no longer effective in protecting against modern attacks. Cyber ​​threats are very varied and dynamic. Organizations need a cybersecurity strategy with multiple layers of security controls for all of their systems. This approach ensures that intruders have to overcome several independent obstacles before they can cause real damage. This discourages attackers and gives organizations more time to recognize and block serious threats.

The next generation Palo Alto Networks CORTEX XDR antimalware solution blocks threats and coordinates the application of security across industrial networks and the cloud to prevent successful cyber attacks. CORTEX-XDR blocks known and unknown malware, exploits and ransomware by observing the techniques and behaviors of the attack. In addition, it allows companies to automatically detect and respond to sophisticated attacks with machine learning techniques and artificial intelligence (AI) with data collected from the endpoint, the industrial network and the cloud. The solution prevents the execution of malicious files through a customized approach to combat traditional and modern attacks. In addition, administrators can use periodic scanning to identify inactive threats, maintain regulatory compliance, and streamline incident response in the context of endpoints.

Figure: Palo Alto CORTEX-XDR management console

 

WildFire Threat Intelligence

In addition to third-party feeds, CORTEX-XDR uses intelligence obtained from tens of thousands of subscribers to the WildFire® malware prevention service to continuously aggregate threat data and maintain the collective immunity of all users across all endpoints, networks and cloud applications.

1. Before executing a file, CORTEX-XDR queries WildFire with the hash of any Windows®, macOS® or Linux executable file, as well as any DLL or Office macro, to assess its position in the global threat community. WildFire returns an almost instantaneous verdict on whether a file is malicious or not.

2. If a file is unknown, CORTEX-XDR moves on with other prevention techniques to determine if the file is a threat that should be blocked.

3. If a file is considered to be malicious, CORTEX-XDR will automatically terminate the process, and optionally quarantine the file

 

USB Media Control

The Honeywell SMX solution reduces the risk of cyber security and limits operational disruptions by monitoring, protecting and recording removable media usage across all industrial facilities. SMX gives plant operators unprecedented control and visibility over the safe use of USB and removable media by personnel and contractors, reducing the cyber risk for processing control networks globally.

SMX provides the most advanced advanced threat detection capabilities for critical infrastructures and isolated network environments and bridges the gap between IT and automation requirements for a more secure manufacturing process.

Figure: Honeywell SMX - Full USB protection for industrial environments.

Key Features:

  • Advanced USB threat protection and firmware-based attacks
  • Better visibility into USB usage in industrial plants and threat activity
  • Honeywell-managed and maintained security updates
  • Advanced cloud-based threat detection
  • Custom Reporting and Management
  • Compliance with NIST and ISA / IEC 62443 requirements

Further product details available at SMX-Brochure