Wednesday, January 13, 2016

Symantec + Cisco = Bad Day

Do you have Symantec's AV + Cisco's Web Gateway?  If so, you may be in for a bad day.  Why?  Malware is currently working it's way around the Internet that neither vendor is protecting against:

Per this Raytheon|Websense File Sandbox Report, a malicious Word Document is being propagated that is actually a Dropper File for Dridex.  If you are hoping Symantec will protect your IT Assets against this threat... you will be disappointed:


Next, assuming the Dropper File was not detected, it's now downloading additional malware from a website on the GoDaddy domain:



If you are hoping your Cisco / IronPort Web Gateway is protecting your IT Assets... you will be disappointed again:


In summary, your security solution needs to be holistic... you need to have visibility into all 7 steps of the Kill Chain.  Call ESPO Systems for a free consultation.


Posted by at

2 comments:

  1. gibsonherryOctober 30, 2017 at 3:53 AM

    I discovered this blog after quite a while which is truly useful to let comprehend distinctive methodologies. I will receive these new indicate my profession and appreciative for this offer assistance. Dell PowerVault MD3800f

    ReplyDelete
  2. gibsonherryJanuary 19, 2018 at 4:48 AM

    Sometime few educational blogs become very helpful while getting relevant and new information related to your targeted area. As I found this blog and appreciate the information delivered to my database.HPE MSL2024 LTO Tape Library

    ReplyDelete

Subscribe to: Post Comments (Atom)