• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   Ransomware   »   Part 2: Email and Web Gateway – Your First Line of Defense Against Ransomware

Part 2: Email and Web Gateway – Your First Line of Defense Against Ransomware

  • Posted on:May 19, 2016
  • Posted in:Ransomware, Security, Web Threats
  • Posted by:
    Wendy Moore
0

Ransomware is fast becoming the scourge of IT departments all over the world. It has risen over the past 12-24 months from a minor nuisance to a major threat – causing business disruption and damaging the brand and reputation of countless organizations. There’s no silver bullet for stopping this new malware threat. But take the time to put in place layered protection, coupled with other preventative measures, and you stand the best chance of mitigating the risk of infection.

Layered protection should always start with the email and web gateway. That means Trend Micro Deep Discovery, InterScan Web Security and Cloud App Security for Office 365.

Protecting your enterprise users

Why the gateway? Because blocking at this point will protect the most vulnerable part of your organization – your users. Although ransomware authors are increasingly targeting diverse parts of the IT environment – including servers and networks – the majority of ransomware attacks still come via email and web channels. It could be a malicious email attachment, or potentially a URL linking to a drive-by-download – anything to entice your organization’s weakest link into making a mistake.

Of the 99 million ransomware threats Trend Micro blocked between October 2015 and April 2016, 99% were stopped at the gateway – in malicious emails or web links. Catch it at this stage and your users will never even be exposed to the risk of clicking through.

Defense starts here

Trend Micro offers a comprehensive set of capabilities designed to block ransomware threats at the mail and web gateway.

Deep Discovery Email Inspector can enhance any email gateway security solution, detecting and blocking advanced spear phishing emails which can bypass many traditional filters. Specifically, it offers:

  • Analysis of email attachments and URLs – Office Docs and macros, PDFs, archives, executables, scripts, multimedia etc.
  • Virtual analysis of URLs embedded in messages or documents
  • Script emulation and zero-day exploit detection to spot behavior which might indicate ransomware, such as mass file modification, encryption, etc.

Cloud App Security is an important tool to enhance your cloud-based email protection solutions. Although these platforms typically have security built in, it pays to have extra protection. Trend Micro Cloud App Security has blocked over one million threats that weren’t detected by Office 365. It offers:

  • Malware scanning and file risk assessment
  • Sandbox malware analysis
  • Document exploit detection
  • Web reputation

InterScan Web Security has been designed to protect organizations at the web gateway, to stop users visiting malicious or compromised sites. It features:

  • Zero day and browser exploit scanning. These are typical methods for ransomware to enter the organization
  • Real-time web reputation powered by Smart Protection Network to root out malicious URLs
  • Integration with Deep Discovery for advanced sandbox analysis

Remember, the email and web gateway defense solutions you put in place are alone not sufficient to prevent all ransomware threats. To stand the best chance of avoiding infection, consider complementing them with endpoint, network and server-level security as well as additional steps including automated back-ups, user education and network segregation.

At Trend Micro, we are committed to helping you protect your organization. With the growing ransomware epidemic, it is our goal to equip you with insights on current threats and information on how to best protect your organization. Say NO to ransomware!

Make sure to check our blog regularly for more information. Our next three posts will detail the next lines of defense in the fight against ransomware: the endpoint, the network and the server.

Click here to read Part 3: Lock Down the Endpoint as Part of Your Layered Defense Against Ransomware.

Related posts:

  1. Trend Micro InterScan Messaging Security now Protects you from Business Email Compromise, Ransomware, and More
  2. Exploits as a Service: How the Exploit Kit + Ransomware Tandem Affects a Company’s Bottom Line
  3. With Online Accounts under Constant Attack, Strong Passwords are Your First Line of Defense
  4. Part 3: Lock Down the Endpoint as Part of Your Layered Defense Against Ransomware

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • Advanced Cloud-Native Container Security Added to Trend Micro's Cloud One Services Platform
  • Trend Micro Goes Global to Find Entrepreneurs Set to Unlock the Smart Connected World
  • Winners of Trend Micro Global Capture the Flag Demonstrate Excellence in Cybersecurity
  • Companies Leveraging AWS Well-Architected Reviews Now Benefit from Security Innovations from Trend Micro
  • Trend Micro Announces World's First Cloud-Native File Storage Security
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.