<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1626328370711236&amp;ev=PageView&amp;noscript=1">
banner-blog.jpg

blog

Preparing for the New Regulatory Environment

Posted by Mehul Patel on Nov 6, 2019

It started as a phishing expedition and ended up being the largest data breach in the history of Singapore. It was June 2018. The FIFA World Cup was in full swing, Jurassic World hit theaters worldwide, and a low-level administrator with SingHealth, the country’s largest healthcare network, clicked on a seemingly innocent link in an email.

Read More

Tags: browser isolation, Web Security, ZeroTrust, ZeroTrust Internet, Guide,, Internet Isolation

DISA Cloud Based Internet Isolation (CBII) awarded to the By Light Professional IT Services LLC and Menlo Security Team

Posted by Amir Ben-Efraim on May 29, 2019

Menlo Security and By Light are partnering to design and implement a Cloud Based Internet Isolation prototype capability for the Defense Information Systems Agency (DISA). The agency is the IT combat support agency of the Department of Defense (DoD).  The agency provides, operates and assures command and control information-sharing capabilities and a globally accessible enterprise information infrastructure in direct support to joint warfighters, national level leaders and other mission and coalition partners across the full spectrum of military operations.

Read More

Tags: browser isolation, Web Security

Where Detection and Prevention Fail, Isolation Succeeds

Posted by Mehul Patel on Apr 30, 2019
As customers adopt a cloud-first approach to IT by allowing users to access the latest SaaS applications, customers are also looking to move their security services to the cloud. However, under-resourced security teams are in a constant position of having to put out fires. This is evidenced by the sheer number of devastating data breaches that make headlines every week.

According to Gartner, the accelerating adoption of cloud applications and an ever-mobile workforce have made the browser the most important productivity tool on an endpoint by far. At the same time, the vast majority of cyberattacks start with browser, targeting end-users with bogus emails and infected attachments, websites and downloadable documents.

We cannot expect legacy Web Security approaches like Secure Web Gateway, URL Filtering or Sandbox solutions to detect and prevent every threat. Even the most aptly trained professional can fall prey to a seemingly normal website or email. Instead, enterprises need to look to a strategy that isolates employees devices. Rather than detect threats and block employees from accessing dangerous web content, this approach simply isolates their laptops from all browser-based traffic.

How does this work exactly? Take a large, global insurance company as an example. They were experiencing web malware and phishing attacks and found that 80 percent of those issues were caused by employees accessing uncategorized websites. Infected devices required costly, time-consuming reimaging. While anti-phishing training for employees was somewhat helpful in addressing the attacks, many employees continued to click on infected links, leading to credential theft and malware infection. By leveraging isolation, everything employees do with a browser is executed in the cloud remote browser instead of the devices themselves. Whether surfing the web, reading emails or downloading documents, it is impossible for malware to be introduced to the network to which the device is connected. What’s more, end-users cannot see their web sessions are actually occurring on our platform rather than on their PCs. The experience is the same.

Menlo Security has done just that - created a transformative security access platform for web applications and websites, available as a service in the cloud or on-premise. This revolutionary platform is scalable, manageable, and easy for corporate customers to adopt. To learn more visit: https://www.menlosecurity.com/isolation-platform
Read More

Tags: patient zero, browser isolation, malicious attachment, Web Security

Gartner Report on Remote Browser Isolation: A Year Later

Posted by Menlo Security on Apr 16, 2019

It’s been a year since Gartner released its report on remote browser isolation. At the time, the report was forward thinking—controversial even—as it suggested that enterprises can no longer assume that their traditional detect-and-respond security strategy is enough to stop all web-based malware attacks. Analyst Neil MacDonald argued that enterprises should stop trying to detect every attack and instead focus on “containing the ability of the attacker to cause damage and reduce the surface area for attack.”

Read More

Tags: isolation technology, "risky web", browser isolation

Sandboxes Are Vulnerable but Not Obsolete. Can a Secure Web Gateway with Internet Isolation Save the Day?

Posted by Mehul Patel on Apr 15, 2019

Sandboxes Are Vulnerable but Not Obsolete. Can a Secure Web Gateway with Internet Isolation Save the Day?

Read More

Tags: secure web gateways, cyber security, isolation platform, browser isolation, web browser isolation, Web Security

Christmas, a time for giving…and patching? Really?

Posted by Menlo Security on Dec 20, 2018

A series of zero-day attacks seems to be a leading indicator of what's in store for IE in 2019!

Read More

Tags: browser isolation, vulnerabilities, malicious links

How Isolation Would Have Stopped The Russian Election Cyberattacks

Posted by Jay Kelley on Jul 19, 2018

Regardless of the political fall-out from Special Counsel Robert J. Mueller’s indictment of twelve Russian intelligence operatives for tampering with the 2016 U.S. Presidential election, this much seems clear after reading the 29-page, John LeCarre-like document: It has become unreasonable to expect any organization to successfully defend against such a massive, coordinated cyberattack.

Read More

Tags: malware, phishing, isolation, credential theft, spear-phishing, remote browsing, cyberattacks, browser isolation, presidential election, Russian hackers, Russian operatives, Russian intelligence, DNC, DCCC, Podesta, cryptojacking, X-Agent, Mueller, U.S. election, GRU, Clinton Campaign, Democratic National Committee, Democratic Congressional Campaign Committee, Clinton, cryptocurrency

Isolation: really making it 'FIN' for FIN7

Posted by Jay Kelley on Apr 10, 2018

It was reported on April 1st – appropriate that it was April Fool’s Day – by a number of media outlets that Hudson’s Bay Company, the Canada-based parent company of iconic luxury retailer Saks Fifth Avenue, as well as Lord & Taylor and Saks Off 5th, had been hacked. Reportedly, over 5 million credit and debit card numbers of customers of the retailers had been stolen, and supposedly were for sale on the Dark Web.

Read More

Tags: hacked, hackers, phishing attack, cyber security, isolation technology, browser isolation

Connect with us

Lists by Topic

see all

Recent Posts