WatchGuard's advanced, real-time APT Blocker


Corey - WatchGuard modified 

Photo - Corey Nachreiner, Director of Security Strategy and Research, WatchGuard Technologies.


Business security solutions provider WatchGuard Technologies has announced a new Advanced Persistent Threat [APT] solution, which delivers real-time threat visibility and protection in minutes, not hours, said the business security solutions firm.

WatchGuard Technologies director of security strategy and research Corey Nachreiner, who spoke recently at the Computerworld Malaysia Security Summit, said the new WatchGuard APT Blocker provided real-time, advanced threat visibility for unified threat management [UTM] and next-gen firewall appliances by indentifying and submitting suspicious files to a cloud-based, next-generation sandbox.

"Nearly 88 percent of today's malware can morph to avoid detection by signature-based AntiVirus solutions," said Nachreiner.  "That means today's AntiVirus solutions remain necessary for catching known threats but alone, they're no longer sufficient."

"APT Blocker's full-system emulation approach to sandboxing provides simple, rapid protection, which doesn't rely on a traditional, signature-based approach to detect and stop advanced malware; in a solution that scales to inspect millions of objects at any given time," said Nachreiner.

He said the new solution integrates with the company's visibility tool, WatchGuard Dimension, providing "an instant, single view of advanced threats, along with other top trends, applications and threats covered by WatchGuard's security technologies." 

APT Blocker now comes pre-installed on all WatchGuard Unified Threat Management (UTM) and Next-Gen Firewall (NGFW) appliances with a free 30-day trial.

 Smaller organisations now within APT radar

WatchGuard Technologies Asia Pacific vice president Scott Robertson said that up until now, APT targets were exclusively governments and large enterprises whose critical infrastructures were stymied by the likes of Stuxnet and Duqu.

But today, advanced threats have evolved to target much smaller organisations and corporations to similarly devastating effect, said Robertson. "Since today's APT targets are not anticipating these threats, they are not sufficiently protected. Often relying almost entirely on AntiVirus and digital-signature solutions, these networks are almost completely vulnerable."