il cloud a difesa della mail e del web
TRANSCRIPT
Il cloud a difesa delle email e del web
Antonio Ricci Symantec.cloud
Email and Web usage
2
Ben
efit
s • Job optimization
• Improving team collaboration
• Information always available
• Quick access to information
Ris
ks
• Phishing attacks
• Confidentiality
• Loss of sensitive information
• Social engineering
Users’ behaviour is changing
Il cloud a difesa delle email e del web
The Convergence of Threats: Botnets, Spyware, Viruses and Spam
Spyware
Spam Viruses Uses botnet to send spam
Spammer
Il cloud a difesa delle email e del web 3
SPAM – Unsolicited Bulk Email
Il cloud a difesa delle email e del web 4
www.symanteccloud.com/intelligence
Email containing Virus
Il cloud a difesa delle email e del web 5
www.symanteccloud.com/intelligence
Phishing Distribution and Targets
Il cloud a difesa delle email e del web
2.0%
13.3%
4.1%
58.7%
21.8%
Typosquatting
Free Web Hosting Sites
IP Address Domains
Other Unique Domains
Automated Toolkits
85.7%
11.6%
2.6%
0.2%
Financial
Information Services
Others
Government
6
www.symanteccloud.com/intelligence
Email misuse impacts
Loss of information
• Sensitive data sent via email
Loss of reputation
• Improper content sent via email
Il cloud a difesa delle email e del web 7
Protecting email infrastructure
Il cloud a difesa delle email e del web 8
Cloud solutions
• Clean Pipe
• Opex vs Capex
• Workload optimization
• Easy to Implement
Symantec.cloud
• Global Intelligence Network
• 10.7 million SaaS users
• Service Level Agreement
• 24x7 Support
SLA Actual Aug
2010
AntiSpam effectiveness
99% 99.99997%
Spam false positive rate
0.0003% 0.000007%
AntiVirus false positive rate
0.0001% 0.000006%
Email & Web Service
Availability 100% 100%
Symantec.cloud SLA
1
6
17 Billion Web requests per day in August
Billion emails scanned by Skeptic
Million pieces of Malware captured in August 2010
Il cloud a difesa delle email e del web 9
Email flow
Il cloud a difesa delle email e del web 10
> host –t type mx ACME.COM
10 mail1.acme.com
20 mail2.acme.com
> host –t type mx ACME.COM
10 cluster.symanteccloud.com
20 clusterA.symanteccloud.com
ACME.COM
10 mail1.acme.com
20 mail2.acme.com
ACME.COM
XYZ.COM
Email protect and Control
Il cloud a difesa delle email e del web 11
Web Security Challenges
Defending Against Malware
• Attackers use the Web to deliver viruses, spyware, and other malware
Enforcing a Web Acceptable Use Policy • Often difficult and time consuming
Web Misuse • Reduces productivity, consumes bandwidth, and creates
exposure to security and legal risk
An Increasingly Mobile Workforce • Extending security and policy enforcement can be difficult when
workers are located away from the corporate LAN
12 Il cloud a difesa delle email e del web
Web Threat Landscape
Average amount of Website requests blocked by our Service:
+20% Vs. 2009 on a per client per month basis.
10%
90% Legitimate Websites compromised by malware without the owners knowledge
Analysis of Blocked Domains:
Newly Established Domains Legitimate Websites
Attackers are increasing their volume and frequently use legitimate Websites…
Source: MessageLabs Intelligence, July 2010
New Malware Sites per Day
Sites with spyware = 200+ per day
Sites with Web viruses: 4000+ per day
Il cloud a difesa delle email e del web 13
Protecting Web Navigation
Il cloud a difesa delle email e del web 14
Cloud solutions
• Easy to Implement
• Scalability
• Roaming users control
• Cost prediction
Symantec.cloud
• Global Intelligence Network
• 14 Datacenters in the world
• URL filtering based on 90 categories
• Strong security focus
• Protection against known and unknown malware
Web Security.cloud How it works
Clean content is delivered without noticeable delay
Web content is retrieved by Symantec.cloud
Multi-layer scanning detects Web-borne threats
A user initiates a Web request which is checked against the customer policies
Firewall
Firewall
Policies determine whether traffic is sent on, flagged or denied. Each request is logged.
Internet
Il cloud a difesa delle email e del web 15
Integrated Management Interface Portal dashboard
Il cloud a difesa delle email e del web 16
Summary
Il cloud a difesa delle email e del web 17
• Benefits and threats
Email and Web usage
• Need for protection
Threat landscape is evolving quickly
• Benfits
Migration to the cloud
• Leader in security protection
• SLA
• Email and Web Protection integration
Symantec.cloud protection:
I prossimi appuntamenti online: > 28 novembre “Symantec Endpoint Protection 12.1” > 13 dicembre “Integrare Data Loss Prevention con Encryption per una più efficace protezione delle informazioni”
18 Il cloud a difesa delle email e del web
Registrati sul sito: www.emea.symantec.com/blackmarket/it
Contatti
19 Il cloud a difesa delle email e del web
Stop Black Market
twitter.com/stopblackmarket