Threats spread to IM, collaboration tools

September 2019 Cyber Security, Residential Estate (Industry)

Traditional anti-virus and mail scanner solutions still miss myriad threats, many of them entering the organisation through legitimate email addresses and – increasingly – through collaboration tools and instant messaging platforms, says Maor Hizkiev, CTO and co-founder of BitDam.

BitDam notes that the average office worker now spends up to 80% of their time collaborating with their managers and colleagues using collaboration tools such as instant messaging, Dropbox, Google Drive or OneDrive, but that many collaboration tools lack adequate security.

Email, shared URLs, file attachments, cloud drives and new digital communications are the most accessible entry point for advanced content-borne cyber-attacks, with 95% of cyber-attacks ‘launched with a click’, says the company. Email remains the most commonly used channel for both opportunistic and targeted attacks, reports Gartner, but new collaboration tools present a growing risk, says BitDam.

“Ensuring that every new collaboration tool is secure is a challenge for CIOs and CISOs,” says South African GECI representative Mike Bergen. He says information security professionals are increasingly concerned about content-borne threats penetrating the network even with anti-virus and email scanning tools in place, and are looking to reduce the risk and costs involved in remediation once a threat has actually reached the network.

Hizkiev says malware embedded in legitimate applications like Word documents and Excel spreadsheets has traditionally been difficult to detect, particularly if the content is sent through known and approved email addresses or through cloud-based collaboration channels.

“The challenge is compounded by the growing trend for attackers to hijack an inbox or spoof a partner or vendor email address and send a mail that looks legitimate – with a known sender and record of prior correspondence, with an appropriate subject line, and possibly even in reply to an email sent by the victim – but which now contains malware in an attachment.”

Addressing this threat demands a new approach to perimeter protection in which content is interrogated before being delivered, with tools to proactively assess whether the application execution flow is in line with its original design, or if it runs with alien code. “With this model, it does not matter if attackers develop new attack techniques; any content in a commonly-used business application deemed suspicious will be quarantined,” he says.

BitDam, an Israeli firm with its roots in the Israeli defence world, monitors content from a cloud-based platform, proactively stopping exploits contained in any type of attachment or URL by extracting the execution flow and eliminating risks with latency as low as 15 – 20 seconds. Hosted on Microsoft Azure, BitDam integrates with most commonly used collaboration channels via APIs and is designed for quick and easy deployment in the organisation. The BitDam solution is ‘attack agnostic’ and detached from the attack world, focusing only on the performance of content, which allows it to detect any malicious payload – whether known or unknown.

BitDam, found to have the highest detection rate of any solution, is being implemented both on top of existing solutions – where it integrates seamlessly with existing security infrastructure – or as a complete solution during an enterprise digitisation or cloud move.



Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Check Point appoints new regional director for Africa
September 2019 , News, Cyber Security
Check Point Software Technologies has appointed Pankaj Bhula as regional director for Africa.

Read more...
ISO standard for protecting personal data
September 2019 , News, Cyber Security
Tackling privacy information management head on: first ISO standard for protecting personal data has been published.

Read more...
The hunt for the Carbanak group
September 2019 , Editor's Choice, Cyber Security, News
Tomorrow Unlocked has released a free four-part documentary that tells the story of the notorious Carbanak APT group and its $1 billion bank heist.

Read more...
Preventing data breaches in small and medium businesses
September 2019 , Cyber Security
To minimise the likelihood of a data breach, companies should hire dedicated cybersecurity specialists, make sure their data is well encrypted and segmented, and only provide limited access to it.

Read more...
Building automation vulnerable to hacks
September 2019 , News, Cyber Security
New vulnerability revealed in Internet-connected building automation devices at the DEF CON IoT Village that could impact critical building systems.

Read more...
Highly adaptable wireless mesh network solution
September 2019, Duxbury Networking , Products, IT infrastructure, Residential Estate (Industry)
Rajant's Living Network infrastructure evolves and adapts to your growing and changing connectivity requirements.

Read more...
Estate-focused visitor management solution
September 2019, Vox Telecom , Access Control & Identity Management, Residential Estate (Industry)
Vox has expanded its cloud-based visitor management solution to cater specifically for the needs of small multi-dwelling unit estates and large residential estates.

Read more...
Becoming more cyber-savvy within the OT environment
September 2019 , Cyber Security, Industrial (Industry)
Organisations running operational technology (OT) have increasingly come under cyberattack, with malware sending shockwaves through these sectors.

Read more...
Cybersecurity requires a new approach
September 2019 , Cyber Security
From digital transformation through to the arrival of the Fourth Industrial Revolution (4IR), decision-makers are changing their views on how technology can benefit the organisation.

Read more...
The importance of real security risk assessments
August 2019, Sentinel Risk Management , Editor's Choice, Security Services & Risk Management, Residential Estate (Industry)
Andy Lawler, MD, Sentinel Risk Management, says a security risk assessment is an onerous task, but is not something estates can consider optional or a luxury item anymore.

Read more...