WatchGuard APT Blocker, a subscription-based security service for WatchGuard security appliances, adds another layer of protection that goes beyond signature-based antivirus to detect and block advanced malware and zero day attacks. It sends Windows executable files, Microsoft Office, PDF, and Android APK files to run in a cloud-based sandbox with code emulation to look for malware characteristics, including multiple types of evasive behaviour.
Features:
You can't stop what you can't see
Advanced malware now threatens every network
Detect advanced persistent threats instantly
Seeing is knowing
Detection in seconds, protection in minutes
You can't stop what you can't see
Nearly 88% of today's malware can morph to avoid detection by signature-based anti-virus solutions. Standalone anti-virus protection is no longer adequate.
Advanced malware now threatens every network
Zero-day attacks and malicious programs once targeted only the largest networks. Not any more. They're taking aim at networks of all sizes. The likelihood yours will be attacked grows every day.
Detect advanced persistent threats instantly
New WatchGuard APT Blocker provides real-time protection with one of the industry's most sophisticated platforms for detecting advanced persistent threats and zero-day malware. And it's available now on all WatchGuard Unified Threat Management and Next-Gen Firewall appliances.
Seeing is knowing
WatchGuard APT Blocker integrates with WatchGuard Dimension, an award-winning security visibility solution that enables you to recognise advanced threats the moment they strike. WatchGuard Dimension comes standard on WatchGuard's Unified Threat Management platform.
Detection in seconds, protection in minutes
Minutes count, so choose instant visibility. Choose WatchGuard APT Blocker, pre-installed on all WatchGuard Unified Threat Management and Next-Gen Firewall appliances with a free 30-day trial
Combat Evolving Threats
As threats continue to evolve and become more complex, there is not one technology that can provide complete threat protection on its own. That’s why at WatchGuard, we take a layered approach to network security, continually staying ahead of the evolving threat landscape with a suite of powerful security services. Signature-based defenses are still critical as a first line of defense, eliminating known threats at the gateway.* However, you still need protection against unknown attacks that make it past the first layers of security. That’s where APT Blocker comes in, providing your next level in advanced malware detection and prevention.
Prevent, Detect, and Resolve
WatchGuard APT Blocker focuses on behavioral analysis to determine if a file is malicious, identifying and submitting suspicious files to a cloud-based sandbox where the code is emulated, executed, and analysed to determine its threat potential. If the suspected file is found to be malicious, APT Blocker quickly takes action to ensure your network and digital assets stay secure.
Full System Emulation Simulates Physical Hardware
Modern malware, including advanced persistent threats, ransomware, and zero-day attacks, are designed to recognise and evade traditional defenses. APT Blocker’s full system emulation – which simulates physical hardware including CPU and memory – provides the most comprehensive level of protection against advanced malware.
Easy to Use
WatchGuard APT Blocker not only provides comprehensive protection against advanced malware, it does with a simple and intuitive user interface. From the management console, you can access easy-to-use controls that enable you to allow, drop, block, or quarantine by severity level, as well as set customised notifications for when APT Blocker detects a threat.
Unparalleled Visibility
Gain complete visibility into the advanced threats attempting to attack your network, including the protocols used, threat IDs, sender source, and the specific types of malicious activities that would have happened if APT Blocker did not take action.
How It Works
WatchGuard APT Blocker works in tandem with WatchGuard Gateway AntiVirus for the ultimate solution in detecting and preventing advanced malware. If the file passes the Gateway AntiVirus* scan, a hash of the file is sent to the APT Blocker cloud sandbox to determine if it is a known threat. If the hash of the file is not recognized, APT Blocker prompts the Firebox to send the full file, which is executed in an environment that simulates physical hardware for comprehensive threat analysis. Administrators are then alerted if the file is suspicious with a threat rating.
*APT Blocker requires a WatchGuard Gateway AntiVirus subscription
License: |
- Review: The 10 Best Wireless Access Points
- Review: The Top 10 Best Ethernet Cables
- What Is An Ethernet Cable And What Does It Do?
- 10 Best CCTV Security IP Cameras For Home & Business
- Review: Best Powerline Adapters In The UK
- Celebrating 20 Years Of Comms Express!
- The Top 10 DrayTek Wireless Access Points
- Best Selling APC Products At Comms Express
- Review: Top 5 Best Performing APC Uninterruptible Power Supply Units (UPS)
- Review: Top 10 Best PDU’s