WatchGuard Technologies announced its new Advanced Persistent Threat (APT) solution, WatchGuard APT Blocker. Delivering real-time threat visibility and protection in minutes, not hours, APT Blocker identifies and submits suspicious files to a cloud-based, next-generation sandbox, using the industry’s most sophisticated full-system-emulation environment for detecting APTs and zero day malware. The WatchGuard solution integrates with the company’s visibility tool, WatchGuard Dimension, providing an instant, single view of advanced threats, along with other top trends, applications and threats covered by WatchGuard’s security technologies.
APT Blocker comes pre-installed on all WatchGuard Unified Threat Management (UTM) and Next-Gen Firewall (NGFW) appliances with a free 30-day trial. WatchGuard has extended their proprietary proxy-based architecture to detect suspicious files and send them for full-system emulation and analysis in the cloud. By adding an additional layer to the deep-packet-inspection engine, WatchGuard’s highly respected detection capabilities now extend from the universe of known threats (malware for which there is a known pattern) into the unknown.
“Nearly 88 percent of today’s malware can morph to avoid detection by signature-based AntiVirus solutions*,” said Corey Nachreiner, Director of Security Strategy and Research for WatchGuard Technologies. “That means today’s AntiVirus solutions remain necessary for catching known threats but alone, they’re no longer sufficient. APT Blocker’s full-system emulation approach to sandboxing provides simple, rapid protection, which doesn’t rely on a traditional, signature-based approach to detect and stop advanced malware; in a solution that scales to inspect millions of objects at any given time.”