Partner Article
Malwarebytes unleashes malware hunting enterprise solution
Malwarebytes, the leading advanced malware prevention and remediation solution for people and businesses, today announced the release of Malwarebytes Breach Remediation, an endpoint detection and remediation (EDR) cybersecurity platform that radically accelerates organisations’ ability to remove advanced threats from their endpoints.
Until now, incident response personnel have been hamstrung by traditional breach detection systems that produce thousands of alerts each day but can’t thoroughly eliminate all backdoors and advanced cyber attacks. With Malwarebytes Breach Remediation, incident response teams can proactively hunt for malware and quickly remediate incidents remotely, saving significant time and money and helping to prevent data breaches.
The award-winning scanning engine in Malwarebytes Breach Remediation detects and removes infections and related artefacts simultaneously across all endpoints on the network. Malwarebytes Breach Remediation scans network endpoints looking for suspicious files or anomalies and, when found, pieces together all of the threat traces and automatically remediates compromised systems. This comprehensive approach to breach remediation helps eliminate the possibility of new cyber attacks or lateral movements that capitalize on leftover malware traces.
In addition to using its own set of heuristics and behavioural rules to identify compromised endpoints, Malwarebytes Breach Remediation can consume custom indicators of compromise (IOC) from third party sources, such as Mandiant, Lastline and Fidelis, to hunt for new and undetected threats. The Open Indicators of Compromise (OpenIOC) framework is currently supported by the solution, with support for YARA, STIX, and TAXII formats coming soon.
Customers may choose to trigger deployment and remediation via Microsoft SCCM, ForeScout and other endpoint management systems, and automatically feed resolution details back into security information and event management (SIEM) tools such as ArcSight, Splunk, QRadar and more. Integrating Malwarebytes Breach Remediation with a customer’s existing security investments creates new opportunities for enterprise-wide advanced threat detection and remediation.
“Traditional breach remediation involves an incident responder running to each computer to put out cyber fires, one at a time,” said Marcin Kleczynski, CEO, Malwarebytes. “Three hours later the same security team member runs to put out another fire. This inefficient way of ‘solving’ the issue hasn’t evolved for decades. Now, Malwarebytes and our integration partners are creating an automated sprinkler system that enables the whole enterprise to put out fires as they appear across thousands of endpoints.”
The Ponemon Institute stated that, in 2015, malicious attacks took an average of 256 days to identify. Once an attack is discovered on a laptop or server it can take an IT administrator six hours of their time to reimage each compromised machine. This traditional, manual approach to detecting and removing data breach-causing malware presents both an ongoing risk and a costly line item to maintain.
Malwarebytes Breach Remediation is available now from authorised Malwarebytes resellers. More product information is available at https://www.malwarebytes.org/business/breachremediation/. Malwarebytes will be showcasing Breach Remediation during the upcoming RSA Conference in San Francisco at booth #2345. Contact Malwarebytes to request a private demo at RSA’s Executive Briefing Rooms.
This was posted in Bdaily's Members' News section by Richard House .