In today's dynamic threat environment, organisations face an enormous variety of malware, including spyware, Trojans, rootkits, viruses and more, that is growing in volume, scope and sophistication. Much of today's malware is fuelled by financially motivated cyber criminals, trying to gain access to valuable corporate, consumer and/or personal data. More than 21 million unique malware samples have been identified, and that number continues to grow exponentially. Organisations need antivirus software that provides fast and accurate identification of the vast amount of known malware. And with malware's increasing sophistication, organisations need antivirus protection that employs multiple detection techniques to identify and block unknown malware (e.g. zero-day exploits).
1. Assess Use signature-based scanning to identify known malware, including viruses, worms, Trojans, keyloggers, hijackers, rootkits and other malicious software. Use behavioural analysis tools (including DNA Matching, SandBox, and Exploit Detection) to assess suspicious code / applications.
2. Remediate Prevent known malware and suspicious code from executing, and remove it from all network assets.
3. Monitor Use customised triggers to generate alerts (delivered via e-mail, SNMP, SMS, Syslog and/or the operating system's event log) based on network-wide events (such as a spreading infection). Use Risk Level Indicator on web-based management console to understand overall network "health" and current event/client status of all endpoints.
4. Report Use comprehensive, customisable reporting facility to cover entire network status and any incidents.