Conventional threat prevention products attempt to distinguish between ‘good’ content and ‘bad’ content, and then implement policies intended to allow the good content and block the bad. This approach is ineffective in eliminating malware because attackers continuously innovate and find ways to avoid detection. The results are costly:
Security professionals are locked in a cat-and-mouse struggle with smart, motivated, well-financed attackers, and every generation of detection-based prevention technology sparks a new generation of attacks that evade defenses. It’s time for a new approach.