View All Publications



Protecting Mobile Devices from Malware Attack — An Osterman Research White Paper
How can you protect your employees’ computers against malware attack regardless of their location? How can you enforce acceptable usage policies for employees located remotely or mobile? The best way to protect against web threats is to redirect all web traffic through a proxy or web gateway that can block blacklisted or unsuitable sites, filter malware downloads, and enforce rules preventing sensitive data from being lost. In this white paper, Osterman Research describes the four ways to reroute web traffic from a mobile device or remote computer through a gateway, and highlights the strengths and weaknesses of each approach.

SANS Data Center Server Security Survey 2014
Learn how organizations are tackling the difficult problem of data center security, as well as the best practices for meeting data center compliance demands while reducing overall risk and management complexity.

Advanced Threat Defense for SIEM
When advanced detection solutions, known as sandboxes, collaborate with SIEM solutions, enterprises can better understand and respond to unknown, advanced attacks. McAfee Advanced Threat Defense and McAfee Enterprise Security Manager work in concert to extract relevant data from advanced malware and dramatically reduce time to response by minimizing uncertainty and accelerating remediation.

Gartner Digital Newsletter: Best Practices Against Advanced Threats
The newsletter includes access to Gartner research ‘Five Styles of Advanced Threat Defense’ and discusses how Intel Security solutions help organizations with every aspect of their advanced threat defense strategy and has uniquely integrated them to provide a powerful security platform.

Executive Summary — The Healthcare Internet of Things: Rewards and Risks
Read the executive summary of this report, which makes the case that industry must build security into healthcare devices and networks from the outset rather than as an afterthought.

The Healthcare Internet of Things: Rewards and Risks
This report makes the case that industry must build security into healthcare devices and networks from the outset rather than as an afterthought.

PCI Guidance: Microsoft Windows Logging
This paper discusses what is involved in establishing logging for Microsoft Windows systems, and discusses how those settings will also be useful in detecting system anomalies that could be indicative of system misuse or even a system breach.
Topics: Foundstone

Management of Native Encryption
With the rapid increase of PCs, tablets, and other devices in the enterprise environment, it’s critical to ensure that sensitive data is secure, and one of the best ways to achieve it is with encryption. Intel Security data protection solutions offer a variety of encryption capabilities and solutions to cover both Windows and Apple devices.

Securosis: Leveraging Threat Intelligence In Incident Response/Management
To contain an advanced attack you need to respond faster and smarter. Focusing on shortening the window between attack and detection, coupled with a solid plan to contain and remediate an attack provides the best chance to overcome the attack. This is one of the key pieces of knowledge for security experts.
Topics: SIEM

McAfee Labs Threats Report: February 2015
McAfee Labs’ quarterly analysis of key threat topics and trends.
Topics: McAfee Labs

Protecting Against Mobile App SSL Vulnerabilities
Many mobile apps are vulnerable to man-in-the-middle attacks. Learn how to protect against them.
Topics: McAfee Labs

Defeating the Angler Exploit Kit
The Angler exploit kit has become one of the most popular and powerful attack kits. Learn how to protect against it.
Topics: McAfee Labs

Protecting Against Potentially Unwanted Programs
PUPs are applications that have legitimate uses but have functions and behaviors that can be exploited against the user without the user’s consent. Learn about PUPs and how to contain them.
Topics: McAfee Labs

Hacking the Human Operating System
This in-depth report examines social engineering as an attack vector. It details the psychological levers employed by social engineers to influence victims, communication channels used for attacks, and controls businesses should establish to reduce risk.
Topics: McAfee Labs

Hacking the Human Operating System — Executive Summary
This executive summary provides an overview of social engineering as an attack vector. It lists the psychological levers employed by social engineers to influence victims, communication channels used for attacks, and controls businesses should establish to reduce risk.
Topics: McAfee Labs

The Business Value of Using McAfee IPS — IDC
In this white paper, leading market intelligence firm IDC provides a compelling view of the business value and benefits gained from using McAfee Network Security Platform. Derived from in-depth interviews with existing McAfee IPS customers, the report data shows how an IPS can provide cost and time savings across an organization.

McAfee Threat Intelligence Exchange and Endpoint Protection
McAfee Threat Intelligence Exchange delivers innovative endpoint protection with a system that adapts and learns from threat encounters, and immediately neutralizes emerging attacks.

Signature-less IPS: Secure Beyond the Signature
Learn how the McAfee signature-less intrusion prevention system (IPS) technology is changing the way malware is detected and blocked. Signature-based detection provides an important foundation for intrusion inspection, but a layered signature-less architecture greatly enhances malware detection and reduces the risk. Read about the seven signature-less detection methods McAfee offers and how they are transforming IPS.

A Well-Connected Sandbox
A well-connected sandbox that is integrated from the network edge to endpoints is one of the most effective defenses against today’s constantly morphing and evasive advanced threats. This brief explains how McAfee Advanced Threat Defense, when integrated with other Intel Security solutions, provides an effective defense against zero-day threats.