Trend Micro Securing Email and File Sharing in the Cloud ... · currently a Director of Global...
Transcript of Trend Micro Securing Email and File Sharing in the Cloud ... · currently a Director of Global...
SecuringEmailandFileSharingintheCloud
Erick SimpsonVice President & CIO, SPC International OnlineAstrategicITbusinesstransformationspecialist experiencedinimprovingtopandbottom-linebusinessperformancebyincreasingoperationalefficiencies, boostingmarketingandleadgenerationoutcomes, accelerating salesvelocity,shorteningsalescyclesandmaximizingserviceefficiencies.
Over30yearsofexperience intheIT industryasanEnterpriseCIO,MSP,andBusinessProcessImprovementExpertwithhundredsofsuccessful ITSolutionProvider,MSPandCloudpracticebusinessimprovementconsultingengagementoutcomes,ErickhasworkedwithnumerousclientsonboththebuyandsellsideoftheM&Aprocess.
Ahighlysought-afterIT,CloudandManagedServicesexpert,authorandspeaker,Erickhasauthored40bestpracticeguidesand4best-sellingbooksincluding"TheGuidetoaSuccessfulManagedServicesPractice", “TheBestI.T.Sales&MarketingBOOKEVER!”, “TheBestI.T.ServiceDeliveryBOOKEVER!” and“TheBestNOCandServiceDeskOperationsBOOKEVER!”.
ErickSimpson
VicePresident&CIOSPCInternationalOnline
www.spc-intl.com
• ITBusinessImprovementSpecialistfocusedonpeople,processandproduct
• Experiencedbuy- andsell-sideM&Aconsultant• CertifiedBehavioralSpecialist• ITSolution,ManagedServicesandCloudsalesoptimization
andQBRimprovementspecialist• ExpertITSolutionandServicetiering,packaging,bundling
andpricingstrategist• NOC/ServiceDeskandDispatchIncidentManagement
Workflowspecialist• SkilledinCRM,PSAandRMMconfiguration,integration,
reportingandanalysis• ProjectManagementspecialist• SkilledVirtual/InterimITSolutionProviderCIOandCOO
YourPresenter
IT,MSPandCloudBusinessImprovementExpert
www.linkedin.com/in/ericksimpsonhttps://amazon.com/author/ericksimpson
SpeakerSpotlight
Chris TaylorDirector, Product Marketing - Trend Micro
Chris TaylorhasworkedwithTrendMicro’smessagingandcollaborationsecurityproductsfor9yearsandiscurrentlyaDirectorofGlobalProductMarketing.HehasadegreeinengineeringfromCaliforniaPolytechnic StateUniversity andaMBAfromSantaClaraUniversity.Throughouthis careerworkingattechnologycompaniesinSiliconValley,hehasheldrolesinsystemsengineering, productmanagement,andproductmarketing.
SecuringEmailandFileSharingintheCloudChris Taylor,UserProtectionProductMarketing
MaximizeYourProfits• IncreaseO365dealsizeand
margin• Recurringrevenue• Servicerevenue
What’sinitforyou?
ProtectYourCustomers• Lesshelpdeskcalls• Highercustomersatisfaction
Copyright2015TrendMicroInc.7
Whatarethesecurityriskstoemail/filesharing?
¾ ofOrganizationshavebeenInfectedwithMalwarefromEmail
Source:OstermanResearch,March2016
Email78%
Web64%
Malwarehassuccessfullyinfiltratedournetwork throughemail
Malwarehassuccessfullyinfiltratedournetwork throughweb
Someofthesewebinfectionslikelycamefromalinkinanemail
Copyright2015TrendMicroInc.9
MajorityofRansomwareviaPhishingEmails• Commonhooksarehereisaninvoice
ormyresume– Canbehidden inWorddoc– MaybeaURLleading toransomware
• Primarytargetnowbusinesses– AHollywoodhospitalrecentlypaid
$17,000
Copyright2015TrendMicroInc.10
ChallengeswithModernMalwareMSOfficefileswithmalwareusedin60%targetedattacks
60%90%
ofmalwareisusedonlyonce
Source:TrendLabs, April2015
20,000New,uniquemalwareevery
hour
Copyright2015TrendMicroInc.11
WhydoIneedtosupplementthesecurityincludedwithOffice365?• ExchangeOnlineisdesignedandSLA
backedtocatch100%knownmalware
• But90%malwareinfectsonly1device.Only10%malwareisknown.
Ifyouboughtanewhomewithasmokedetectorguaranteedtodetect10%offireswouldyousupplementit?
Everycustomerneedsastrategytodealwithunknownmalware
Copyright2015TrendMicroInc.12
Customer
Copyright2015TrendMicroInc.13
EnhancingtheSecurityofOffice365EmailandFileSharing
Copyright2015TrendMicroInc.14
SecuringOffice365EmailandFileSharingAdvancedThreatDetection• Findszero-dayandhidden threats• Sandboxfileanalysisinthecloud• WebreputationforURLsinemail/files
DataLossPrevention(DLP)• Discoveryandvisibility intoconfidential
datausage• DLPenforcement forcloudfilesharing• 240customizabletemplates
Directcloud-to-cloudintegration
Copyright2015TrendMicroInc.15
SimpleAPIbasedIntegration• Directcloud-to-cloudintegrationusing
vendor’sAPI’sattheapplicationlevel• Noimpacttouser/adminfunctionality• Supportsalldevices,anywhere• Fullyautomaticsetup
MX R e c o r d S o f twa r e U s e r
settingsWebp ro x y
CloudAppSecurity
API
FindingHiddenandUnknownMalwareStaticanddynamicdetectiontechniques
Dynamictechniques:• Virtualsandboxanalysis
• Riskbased• Pattern-lessdetection• Multipleoperatingsystems• Anti-evasion
Statictechniques:• Filereputationandprevalence• URLreputation (including infiles)• Documentexploitdetection• Filetype blocking
Copyright2015TrendMicroInc.17
TypicalRansomwareInfectionChain
URL
Compromisedwebsite
Downloadransomware
Exploitkit
Ransomwareexecutable
Attachment(compressed?)
Document
JavaScript
Ransomwareonsystem
ExposureLayer InfectionLayer
Execution:encryptfilesandransom
Copyright2015TrendMicroInc.18
EmailSecurity
EndpointSecurity
StopRansomwareatMultipleLevels
Execution:encryptfilesandransom
Document
JavaScript
Ransomwareexecutable
URL
Downloadransomware
Attachment
Ransomwareonsystem
WebSecurity
CentralVisibility
EndpointSecurity
Exploitkit
Compromisedwebsite
Copyright2015TrendMicroInc.19
CloudAppSecurity
StopRansomwareatMultipleLevels
Document
JavaScript
Ransomwareexecutable
URL
Attachment
• Contentanalysis1 • WebReputation
(inemailorattachment)
• Anti-Malware,prevalence• Similaritydetection• FileTypefiltering
• DocumentExploitscan• MacroDetection
2
• Sandboxbehavioralanalysis
3
Copyright2015TrendMicroInc.20
ComplementingOffice365’sBuiltinSecurityforBetterOverallProtection
Office365builtinsecurityblocksknownthreats
TrendMicroCloudAppSecurityfindshiddenandunknown threats
Detectedanadditional2,500,000maliciousfilesandURL’s beyondthebuiltinOffice365securityduringthefirst10monthsofoperation.
ResourcestoSharewithProspects
YouTubevideo:https://youtu.be/uYLvvPvUsVs
OstermanWhitePaperonMigrationtoO365
IDCWhitePaperonprotectingSaaSapplications
Copyright2015TrendMicroInc.22
22
Maximizeyourprofits
FindsUnknownMalwareincluding
Ransomware
ProtectsMore
Keytake-aways
TrendMicroCloudAppSecurity
Copyright2015TrendMicroInc.23
www.trendmicro.com/office365
Copyright2015TrendMicroInc.24
HowisitdifferentfromMicrosoft’sAdv.ThreatProtectionService?
3.BetterProtection• TrendMicro–topratedDeepDiscoverytechnology
• Microsoft– newunproventechnology
• AV-TestfindsTrendMicro100%effectiveagainstunknownmalwareandMicrosoftonly76.5%– CloudAppSecuritydetected500,00
maliciousfilesJul’15-Mar’16.Ifithadaneffectiveness scoreofonly76.5%,then117,000malwarewouldhaveremainedundetected
AV-Test.org Jan-Jun2015testingofendpointsecurity productsshowstherelative effectivenessofsecuritytechnologiesagainst unknownmalware
MicrosoftATP
TrendMicroCloud AppSecurity
Office 365email ● ●
OneDrive,SharePoint ●
Box, Dropbox, GoogleDrive ●
1.MoreProtection
MicrosoftATP
TrendMicroCloud AppSecurity
Averagesandboxtime 7-8min* 4-5min
*MSFTusersreportfrequent15-30mindelays
2.FewerDelaysTrendMicroriskassessmentavoidssandboxing98%filesandanalyzesfilesquicker: