Endpoint Security

Endpoint security is becoming increasingly important, and that for two reasons. First of all, more and more network traffic is encrypted and network based protection is not always capable of inspecting it. On the other hand, users are becoming more mobile and they sometimes connect to insecure wireless networks.

We also noticed a sharp rise in ransomware, especially in the CryptoLocker variants. Traditional anti-malware vendors have problems blocking it because of their approach. The newer versions are constantly mutating in order to circumvent traditional signature based protection mechanisms.

A new technique that can block this malware has been introduced. It is strongly based on statistical analysis via machine based learning. Thanks to this technique, it will be possible to block zero day malware.

Vendors: Cylance, Palo Alto (Traps), TrendMicro