APT Email Attack Protection

In order to be up to date with anti-virus systems, hackers and military spywares spend all day long investigating how to find security vulnerabilities, and damage the defense layers of this security equipment, successfully stealing confidential data such as credit card accounts and passwords. Consequently, there is a loss of privacy information and business opportunities; even national security could be in danger, among countless other hazards.

The challenge for existing information securities

Traditional firewall can provide access control to the source IP address/service port connections. Next-generation firewall can provide access control to Application level, Intrusion Prevention System (IPS) provides deep layers invasion and detection methods, such as Signatures; Email Security Gateway can fight against spam, viruses, worms, mail bombs and other threats in isolation; but it is not enough to fight against current and future virus attacks.

The new APT Threat

APT (Advanced Persistent Threat) techniques are like a Chinese saying that goes “while the priest climb a post, the devils climbs ten”. Email is the most common prey for APT attack: Traditional spammers send junk mail to a large amount of accounts, taking a shot in the dark. However, in order to damage the anti-spam and the anti-virus systems, APT instead focus on a small number, long-term targets and concentrate on ways to penetrate them, therefore the traditional emails defense cannot respond/react effectively to such threats and risks.

Anti-APT Advanced Protection

To protect against the unknown, new advanced malware in emails, attachment files or phishing targeted attacks, Cellopoint SEG will scan and block as follow:

  • Static Threat Intelligence Database
  • Dynamic Sandbox Scanning
  • Full-system emulation
  • Correlation Analysis and Threat Scores.
  • Professional Summary Report

If you have further question on how APT technoloy works, you can contact us