il cloud a difesa della mail e del web

Il cloud a difesa delle email e del web

Antonio Ricci Symantec.cloud

Email and Web usage

2

Ben

efit

s • Job optimization

• Improving team collaboration

• Information always available

• Quick access to information

Ris

ks

• Phishing attacks

• Confidentiality

• Loss of sensitive information

• Social engineering

Users’ behaviour is changing


The Convergence of Threats: Botnets, Spyware, Viruses and Spam

Spyware

Spam Viruses Uses botnet to send spam

Spammer

Il cloud a difesa delle email e del web 3

SPAM – Unsolicited Bulk Email


www.symanteccloud.com/intelligence

Email containing Virus



Phishing Distribution and Targets


2.0%

13.3%

4.1%

58.7%

21.8%

Typosquatting

Free Web Hosting Sites

IP Address Domains

Other Unique Domains

Automated Toolkits

85.7%

11.6%

2.6%

0.2%

Financial

Information Services

Others

Government

6


Email misuse impacts

Loss of information

• Sensitive data sent via email

Loss of reputation

• Improper content sent via email


Protecting email infrastructure


Cloud solutions

• Clean Pipe

• Opex vs Capex

• Workload optimization

• Easy to Implement

Symantec.cloud

• Global Intelligence Network

• 10.7 million SaaS users

• Service Level Agreement

• 24x7 Support

SLA Actual Aug

2010

AntiSpam effectiveness

99% 99.99997%

Spam false positive rate

0.0003% 0.000007%

AntiVirus false positive rate

0.0001% 0.000006%

Email & Web Service

Availability 100% 100%

Symantec.cloud SLA

1

6

17 Billion Web requests per day in August

Billion emails scanned by Skeptic

Million pieces of Malware captured in August 2010


Email flow


> host –t type mx ACME.COM

10 mail1.acme.com

20 mail2.acme.com

> host –t type mx ACME.COM

10 cluster.symanteccloud.com

20 clusterA.symanteccloud.com

ACME.COM

10 mail1.acme.com

20 mail2.acme.com

ACME.COM

XYZ.COM

Email protect and Control


Web Security Challenges

Defending Against Malware

• Attackers use the Web to deliver viruses, spyware, and other malware

Enforcing a Web Acceptable Use Policy • Often difficult and time consuming

Web Misuse • Reduces productivity, consumes bandwidth, and creates

exposure to security and legal risk

An Increasingly Mobile Workforce • Extending security and policy enforcement can be difficult when

workers are located away from the corporate LAN

12 Il cloud a difesa delle email e del web

Web Threat Landscape

Average amount of Website requests blocked by our Service:

+20% Vs. 2009 on a per client per month basis.

10%

90% Legitimate Websites compromised by malware without the owners knowledge

Analysis of Blocked Domains:

Newly Established Domains Legitimate Websites

Attackers are increasing their volume and frequently use legitimate Websites…

Source: MessageLabs Intelligence, July 2010

New Malware Sites per Day

Sites with spyware = 200+ per day

Sites with Web viruses: 4000+ per day


Protecting Web Navigation


Cloud solutions

• Easy to Implement

• Scalability

• Roaming users control

• Cost prediction

Symantec.cloud

• Global Intelligence Network

• 14 Datacenters in the world

• URL filtering based on 90 categories

• Strong security focus

• Protection against known and unknown malware

Web Security.cloud How it works

Clean content is delivered without noticeable delay

Web content is retrieved by Symantec.cloud

Multi-layer scanning detects Web-borne threats

A user initiates a Web request which is checked against the customer policies

Firewall

Firewall

Policies determine whether traffic is sent on, flagged or denied. Each request is logged.

Internet


http://images.google.com/imgres?imgurl=http://upload.wikimedia.org/wikipedia/commons/thumb/b/bd/Checkmark_green.svg/417px-Checkmark_green.svg.png&imgrefurl=http://commons.wikimedia.org/wiki/File:Checkmark_green.svg&usg=__tb9e0i3Zdlj_Loh28mUrOlo4Bpo=&h=362&w=417&sz=17&hl=en&start=10&tbnid=r9e75vgylxV6FM:&tbnh=109&tbnw=125&prev=/images?q=green+check+mark&gbv=2&ndsp=20&hl=en&sa=N

Integrated Management Interface Portal dashboard


Summary


• Benefits and threats

Email and Web usage

• Need for protection

Threat landscape is evolving quickly

• Benfits

Migration to the cloud

• Leader in security protection

• SLA

• Email and Web Protection integration

Symantec.cloud protection:

I prossimi appuntamenti online: > 28 novembre “Symantec Endpoint Protection 12.1” > 13 dicembre “Integrare Data Loss Prevention con Encryption per una più efficace protezione delle informazioni”


Registrati sul sito: www.emea.symantec.com/blackmarket/it

http://www.emea.symantec.com/blackmarket/it

Contatti


Stop Black Market

twitter.com/stopblackmarket

@ [email protected]

http://twitter.com/stopblackmarket

http://twitter.com/stopblackmarket

mailto:[email protected]

il cloud a difesa della mail e del web

Technology

email web

difesa delle email e

cloud protection

email reputationil

summary email

web viruses

web requests

web protection integrationil