Cb Defense Takes the Lead in Next-Generation Antivirus (NGAV)
Carbon Black Named a Visionary in Gartner EPP Magic Quadrant
Streaming Prevention
A new approach to preventing all attacks
The Evolving Threat Landscape
It's no secret non-malware attacks are on the rise. Our own research, which dove into the security events of over one thousand customers supporting more than 2.5 million endpoints, found the prevalence and likelihood of a non-malware attack occurring to be overwhelming. We found that virtually every organization was targeted by a non-malware attack in 2016, and about one-third of organizations are likely to encounter at least one severe non-malware attack in the next 90 days. This method of attack, also known as file-less, memory-based or simply "living of the land," is especially effective given the current approach to endpoint security.
Current antivirus platforms only focus on stopping malware-based attacks and do nothing to prevent or even see non-malware attacks. Machine learning and antivirus cannot protect you from the most dangerous attacks. The focus on detecting malware at the point-in-time it executes is simply not enough. We need a more sophisticated approach that stops all attacks before they happen.
| Streaming Prevention | Machine Learning |
|---|---|
| Designed to stop malware and non-malware attacks | Designed to stop only malware |
| Difficult to bypass even by skilled attackers | Easily bypassed by attackers |
| Complete visibility into full attack | No visibility into where malware came from |
| Applies advanced algorithms to files, processes, and applications | Applies algorithms to files only |
| Lightweight on the endpoint | Lightweight on the endpoint |
Streaming prevention is the underlying prevention model that supports Cb Defense. Streaming prevention works by first collecting and sequencing every endpoint event. In doing so it uncovers attacks while they form, and stops them before they compromise your system. It builds a risk profile for every sequence it finds, with each new event triggering a new assessment. When an event pushes the risk profile too far, streaming prevention stops it automatically.
Cb Defense
Streaming Prevention
Going beyond machine learning, this prevention model uses continuous analysis of the entire attack sequence to stop the attacker before they execute their payload and compromise your system.
- Stop everything: malware, ransomware, zero-day and non-malware attacks
- Prevent attacks automatically; online and offline
- Customize security policies to optimize protection for each asset group
Market-leading Detection and Response
A fully cloud-based platform captures every endpoint event to uncover and display threat activity in real-time so you can respond and remediate immediately.
- See everything: Continuous and centralized data recording in the cloud provides zero-gap endpoint visibility
- Easily visualize the attack chain to hunt down attackers and see exactly what they are trying to do
- Automated threat hunting algorithms powered by infinite cloud resources keep you one step ahead of every attack
Lightweight and Easy
Total protection from a single agent, through a simple cloud console, with absolutely zero impact to the end user. Period.
- Feel nothing: 15 minutes or less to deploy and requires less than 1% CPU and disk space from each endpoint
- Discreet single agent never interferes with regular operations, keeping your users happy and productive
- Finally feel in control with effective endpoint security that balances total visibility, automated prevention and user impact
Source: Carbon Black