banner-blog.jpg

BLOG

Isolate and liberate

Posted by Tom Mcvey on Jan 13, 2021

How Web Isolation Is Setting the Stage for a New, Future-ready Approach to Security.

Imagine you’re an Olympic sprinter. The starting gun is about to go off when race officials announce a late change. You’ll need to hop a zig-zag pattern on one foot while still maintaining your original two-foot qualifying speed—or face a DQ.

 

Read More

Tags: web isolation, Web Security, Secure Remote Worker, Remote Work, digital transformation, ACR technology

Increase In Attack: SocGholish

Posted by Krishnan Subramanian on Dec 17, 2020

Menlo Labs has uncovered a increase in a drive-by attack that impersonates legitimate browser, Flash, and Microsoft Teams updates

 

In the last two months, the Menlo Labs team has witnessed a surge in drive-by download attacks that use the “SocGholish” framework to infect victims. This particular framework is known to be widely used to deliver malicious payloads by masquerading as a legitimate software update. Isolation prevents this type of attack from delivering its payload to the endpoint. Here’s what we know.

 

Read More

Tags: drive-bys, SocGholish, social engineering, Chrome update, browser update, Microsoft Teams update, malicious ZIP file, malicious download, Firefox update, Flash update

2021 Threat Landscape

Posted by Kowsik Guruswamy on Dec 16, 2020

What to Look for in the New Year

I have good news and bad news. The good news is that the most difficult year in recent memory is almost over. By my count, we have less than 20 days to go, and that’s clearly not enough time for the murder hornets to make a comeback and take over the world.

Read More

Tags: cybersecurity, phishing, ransomware, anti-phishing, business email compromise, 2021, document attacks, command & control, https security, threat landscape

Frost & Sullivan Names Menlo Security a Growth and Innovation Leader in the APAC Web Security Market

Posted by Mehul Patel on Dec 14, 2020

With the surge in remote working and widespread adoption of Software as a Service (SaaS) platforms, security needs to be re-architected to better address modern-day threats. Apps and users have shifted from on-premises appliances to the cloud, and security infrastructure needs to adapt accordingly to keep pace.

Read More

Tags: Web Security, SASE, CASB, cloud security, secure web gateway, SOC, ZTNA, SaaS security, APAC, Asia Pacific

Menlo Security Named a Visionary in Gartner’s MQ for Secure Web Gateways Three Years in a Row

Posted by Mehul Patel on Dec 11, 2020

We believe the report validates customer migration from on-premises to the cloud and security functions’ convergence into a SWG platform architecture.

Gartner’s 2020 Magic Quadrant for Secure Web Gateways (SWG) is now live, and Menlo Security has been named a Visionary for the third year in a row. In fact, Menlo Security moved further right in completeness of vision and upwards in ability to execute the and we believe is now on the cusp of the Leaders’ quadrant.

Read More

Tags: isolation, web isolation, SWG, SASE, CASB, secure web gateway, Menlo Security, Gartner MQ, ZTPA, Gartner Magic Quadrant, Menlo

Security vs. User Experience (87% Say User Experience Is What Counts)

Posted by Mehul Patel on Dec 8, 2020

Is Security an Enabler or an Inhibitor to the Future of Work?

It’s no secret that the drastic, sudden changes in the way we work over the past nine months have negatively impacted user experience and increased cybersecurity risk. Users have been forced away from the consistent application reliability and speed they enjoyed in the office to a work-from-home application experience that is overrun by hiccups, lag, and poor connectivity. In-person meetings have given way to choppy, pixelated video conferencing, during which key points and takeaways can be easily misconstrued. And threat surfaces have exploded across the edge of the network as users log in to critical on-premises business systems, Software as a Service (SaaS) platforms, and cloud apps from unsecured devices at their home office, the dining room table, and their kids’ rooms.

 

Read More

Tags: cybersecurity, user-experience, cloud security, network security, edge security, security without compromise

Zero Trust for Federal Agencies

Posted by Mehul Patel on Dec 4, 2020

Internet Isolation Enables a Zero Trust Approach That Protects Remote Users from Cybersecurity Threats without Impacting the User Experience.

Federal agencies are being forced to rethink the way they empower public servants with the tools and information they need to make government work. Even before the Covid-19 global pandemic, agencies were undergoing digital transformation in an effort to create efficiencies and be more responsive to citizens. Then, as government employees and contractors moved from their office cubicle to their dining room table—literally overnight—federal IT organizations had to scramble to enable application access to a nearly 100 percent remote workforce.

 

Read More

Tags: isolation, Internet Isolation, zero trust, new normal, federal cybersecurity, government digital transformation, next-gen secure web gateway

Chrome Gets Patched Again—But 83% of Users Aren’t Running the Latest Version

Posted by Mehul Patel on Nov 19, 2020

Isolation Provides Malware-Free Browsing Regardless of Patch Status

Imagine your life today without being able to freely browse the web. Browsers have put the entire world on our devices and in the palm of our hand—easily searchable in a powerful and seamless experience. This is where work happens, in browsers, email and shared files. Securing this this essential (yet vulnerable) entry point, ensures malicious actors wouldn’t be able to launch, much less carry out, an attack. Simply put, Chrome is critical to getting business done, as it is used by nearly two-thirds of devices worldwide.

Read More

Tags: cybersecurity, Google Chrome, Internet Isolation, cloud security, zero-days, CVE-2020-16017, CVE-2020-16013, web browser, CVE-2020-16009, CVE-2020-15999

Combat Alert Fatigue

Posted by Mehul Patel on Nov 18, 2020

Improve Productivity of Your SOC Personnel Through Menlo iSOC

I get it—it’s been a hard year for the cybersecurity industry. Covid-19 pushed users from a safe, central, hardened data center out to the edge of the network—literally overnight. We’ve been forced to scramble to enable secure application access to these newly remote users who are logging in to critical business systems from unsecured residential Internet connections and personal devices. We all knew this day was coming, but no one thought that 2020 would be the year we embraced the New Normal.

 

Read More

Tags: cybersecurity, threat intelligence, security operations center, SOC, false positives, cybersecurity alerts

Solving FinTech’s Top 4 Security Anxieties

Posted by Mehul Patel on Nov 17, 2020

Two FSI Experts Talk About What Keeps Them Up at Night

The thing about anxieties is that everyone has them. There’s not a person alive who isn’t afraid or worried. Whether it’s spiders or public speaking or nuclear war, something likely keeps us up at night. Cybersecurity is the same way. A CISO for a major hospital network is going to be concerned about different threats and challenges than a manufacturer or a nonprofit. These organizations have different intellectual property, interactions with customers, and business models—and are therefore targeted in different ways.

Read More

Tags: cybersecurity, FSI, secure financial information, PII, FSI security, secure personal information, remote user security

Connect with us

Lists by Topic

see all

Recent Posts