McAfee Threat Intelligence Exchange

McAfee Threat Intelligence Exchange

Prevenção adaptável contra ameaças

Próximas etapas:

Visão geral

O McAfee Threat Intelligence Exchange oferece uma estrutura coesa, na qual os produtos de segurança identificam ameaças coletivamente e atuam como um sistema unificado de defesa, oferecendo resiliência de segurança e imunidade a infecções. O Threat Intelligence Exchange agiliza consideravelmente a prevenção contra ameaças, reduzindo o período entre o encontro e a contenção de dias, semanas ou meses para milissegundos.

Aplique o poder do conhecimento: com o Threat Intelligence Exchange, os administradores podem personalizar facilmente informações abrangentes sobre ameaças a partir de diversas fontes de dados de inteligência. Essa personalização permite que os administradores reúnam, ignorem e ajustem as informações da fonte de inteligência para que possam modificar a proteção de seu ambiente e de sua organização.

Orquestre em tempo real: o Threat Intelligence Exchange é a primeira solução a usar a camada de troca de dados da McAfee, uma malha bidirecional de comunicações que possibilita a inteligência de segurança, e a segurança adaptável através do compartilhamento de contexto e da simplicidade de integração do produto. A camada de troca de dados tem suporte à configuração automática de produtos, reduzindo erros e dispensando o trabalho de redução de custos operacionais e de implementação da integração.

Poder extra para a proteção de terminais existente: o Threat Intelligence Exchange oferece proteção inovadora para terminais, usando o McAfee VirusScan Enterprise para tomar decisões precisas sobre a execução de arquivos. Os terminais também serão protegidos com base no malware detectado pelos gateways de rede, enquanto os gateways de rede bloqueiam o acesso com base nas condenações dos terminais.

SIEM tools are key to improving incident response

Read SANS Report

Advanced targeted attacks: It takes a system

Read White Paper

Recursos e vantagens

Informações abrangentes sobre ameaças

Com o McAfee Threat Intelligence Exchange, os administradores podem personalizar facilmente informações abrangentes sobre ameaças a partir de fontes de dados globais, como o McAfee Global Threat Intelligence (GTI) e canais de terceiros, com informações locais sobre ameaças obtidas de dados de eventos históricos e em tempo real, originários de terminais, gateways e outros componentes de segurança.

Visibilidade imediata da presença de ataques direcionados avançados

A camada de troca de dados da McAfee permite que os componentes de segurança ingressem dinamicamente no McAfee Threat Intelligence Exchange. As informações compartilhadas resultam em uma conscientização mais profunda sobre as ameaças que visam uma organização. Os ataques são descobertos através de terminais, gateways e outros componentes de segurança, que se unem para oferecer vigilância em tempo real.

Proteção proativa contra ameaças

Os detalhes sobre ameaças, coletados em encontros com o malware em terminais e gateways de rede, podem se propagar pela camada de troca de dados em milissegundos, orientando todos os componentes de segurança a imunizarem-se proativamente contra as ameaças recém-detectadas.

Eficácia operacional incomparável que reduz o custo de propriedade de segurança

Além de aumentar a resiliência da segurança, você vai reduzir o custo de propriedade de segurança estendendo seus investimentos existentes em tecnologia de análise, prevenção e detecção de segurança da McAfee, protegendo sua organização de forma proativa e eficiente assim que uma ameaça for revelada.

Requisitos de sistema

O McAfee Threat Intelligence Exchange exige os seguintes produtos:

  • McAfee ePolicy Orchestrator 5.1
  • McAfee Agent 5.0
  • McAfee VirusScan Enterprise 8.8, Patch 4

 

Vídeos

Vídeos

McAfee Threat Intelligence Exchange integrates, automates, and simplifies to decisively reduce TCO and optimize enterprise security. It eliminates complexity, provides instantaneous speed, and illuminated knowledge that can lower operating costs while streamlining protection and response ― all while freeing valuable security team resources.

Recursos

Documentos

Securosis: Applied Threat Intelligence (English)

One of the most compelling uses for threat intelligence is helping to detect attacks earlier. Examining for attack patterns identified via threat intelligence in your security monitoring and analytics processes shortens the window between compromise and detection. This Securosis white paper focuses on how to use threat intelligence to improve your ability to detect, prevent, and investigate attacks.

SANS White Paper: Be Ready for a Breach with Intelligent Response (English)

How do we get more visibility into attacks across our environments, improve our response, and reduce response time? The solution is automating functions that should be automated and connecting the dots between detection systems and response. Connecting these dots and applying intelligence provides responders rich context into the observed behaviors for taking action. Integrating these processes improves accuracy, while reducing time, manpower, and costs involved in detecting and managing events. This white paper explores how to achieve this.

Advanced Targeted Attacks: It Takes a System (English)

Adaptive intelligence and real-time communications orchestrate protection in the McAfee Security Connected Platform.

Especificações

McAfee Threat Intelligence Exchange

Para um resumo técnico do produto McAfee listado acima, consulte o data sheet do produto.

Infographics

Uma segurança conectada cria Defesas Mais Inteligentes.

Stop emerging threats with applied knowledge — everywhere, instantly.

Relatórios

ESG Report: Tackling Attack Detection and Incident Response (English)

This report examines organizations’ security strategies, cyber-attack environments, incident response challenges and needs. A survey found that security professionals are inundated with security incidents and struggle with timely identification and resolution of targeted attacks. A lack of visibility into user and network activity, shortage of investigative skills and experience, and poor security analytics capabilities are key factors in slowing organizations’ response to incidents.

SANS Analytics and Intelligence Survey (English)

This paper explores the use of analytics and intelligence today and exposes the impediments to successful implementation. Organizations that are deploying analytics and intelligence properly are experiencing faster response and detection times, as well as greater visibility. However, many are confused about how to integrate and automate their intelligence collection processes.

Resumos de soluções

McAfee Threat Intelligence Exchange and Endpoint Protection (English)

McAfee Threat Intelligence Exchange delivers innovative endpoint protection with a system that adapts and learns from threat encounters, and immediately neutralizes emerging attacks.

Abuso de confiança

Attackers prey upon the institution of trust in many ways, with exploiting unsuspecting victims the primary pursuit. Learn how McAfee security technology can help protect against attacks seeking to abuse the trust your company has in its day-to-day operations.

McAfee Enterprise Security Manager and McAfee Threat Intelligence Exchange (English)

There’s no doubt that organizations face significant challenges protecting their intellectual property and critical assets from the emerging threats that target their environments. This solutions brief highlights how McAfee® Enterprise Security Manager and McAfee Threat Intelligence Exchange work together to provide organizations with exactly what they need to fight today’s advanced threats.

Segurança em conjunto

McAfee Threat Intelligence Exchange and McAfee Advanced Threat Defense work together to provide enterprises with automated, adaptive threat response, which reduces time-to-containment of malicious files. The moment a file is convicted, the entire security infrastructure is informed and updated immediately, providing greatly enhanced visibility and control, from endpoint to network.

Comunidade

Blogs

  • Empowering Organizations to Better Recognize and Respond to Cyber-Attacks
    McAfee - Abril 21, 2015

    RSA Conference 2015 is here, and with it, groundbreaking innovations in the security space. This year, we’re bringing to the table some major announcements that will help bolster defenses against a cyber threat landscape that is increasing both in size and in complexity. So—how exactly are we shaking up security this year? Here’s a quick […]

    The post Empowering Organizations to Better Recognize and Respond to Cyber-Attacks appeared first on McAfee.

  • Predictive Analytics: The Future Is Now
    Vincent Weafer - Abril 16, 2015

    Enhanced analytical capabilities will help organizations better understand how attacks will unfold, and how to stop them in their earliest stages.  Prediction is as old as humankind, as we’ve search for clues to the future. Big data, computer models, and sophisticated algorithms have brought us much closer to accurately predicting things such as actuarial tables, […]

    The post Predictive Analytics: The Future Is Now appeared first on McAfee.

  • Botnet to Cybersecurity: Catch Me If You Can
    Raj Samani - Abril 15, 2015

    Tracking and disrupting the crime ring behind a polymorphic botnet.  On April 8, global law enforcement, with the assistance of Intel Security/McAfee, took down the Beebone botnet, which propagates a particularly tricky polymorphic worm. Law enforcement and criminals often act like predators and prey, each evolving and adapting, trying to gain an advantage. A few […]

    The post Botnet to Cybersecurity: Catch Me If You Can appeared first on McAfee.

  • Microsoft Patch Tuesday – April 2015
    PageOne Pr - Abril 15, 2015

    Hello everyone, This is Greg Blaum again with the Microsoft Patch Tuesday newsletter for April 2015. The month Microsoft released a total of eleven (11) security bulletins. For this month, four (4) of these are rated Critical, which Microsoft terms as a vulnerability whose exploitation could allow code to execute without any user interaction. These […]

    The post Microsoft Patch Tuesday – April 2015 appeared first on McAfee.

  • RSA Conference 2015: Shaking Up Security
    McAfee Enterprise - Abril 14, 2015

    With RSA Conference drawing near, the information security industry is abuzz. In today’s digital, always-on (rather, always-online) world, it is more critical than ever to keep data protection top of mind. RSA Conference provides an open forum for security professionals to do just that, from learning the latest industry trends to exchanging ideas on how […]

    The post RSA Conference 2015: Shaking Up Security appeared first on McAfee.