McAfee DLP Prevent protects against data loss by ensuring that data only leaves the network when appropriate — whether through email, webmail, instant messenger, wikis, blogs, portals, HTTP/HTTPS, or FTP transfers. If a policy violation is detected, DLP Prevent can, at your choice, encrypt, redirect, quarantine, or even block the data transmission in question. This supports compliance with privacy regulations and reduces the likelihood of data breaches, while enabling legitimate data use.
Scan inbound/outbound network traffic — DLP Prevent delivers comprehensive scans of inbound and outbound network traffic across all ports, protocols, and content types.
Automatically identify over 300 content types — Using comprehensive data classification, DLP Prevent automatically identifies and protects more than 300 different content types (including complex computer aided design (CAD) files) in over 13 languages.
Gain visibility to security incidents — Customized views and incident reports provide summary and detailed views of security incidents and the mediation actions taken.
Protect more than 300 standard content types, including Microsoft Office documents, multimedia files, source code, design files, archives, encrypted files, built-in policies, and intellectual property, as well as sensitive information in exotic data formats through the use of customer filters.
Report all incidents to our centralized incident management console for access by any authorized user for follow-up, delegation, or inclusion in new or existing cases.
Filter and control sensitive information, and index and enforce fine-grained security policies for all content.
Facilitate a seamless integration with a broad range of commercial email and web gateway products (standards-based integration via simple mail transfer protocol (SMTP) and Internet content adaptation protocol (ICAP)).
Establish common, enterprise-wide policies to ensure that data protection is uniformly enforced out to the network boundary.
Use built-in policies and rules for common regulatory requirements, including PCI, GLBA, HIPAA, SOX, personally identifiable information, patient health information, SSN, CCN, stripe data, financial information, and more. Network DLP Prevent also provides built-in policies for intellectual property assets (e.g., source code, internal memos, product documents, and pricing information).
Get integrated case management with configurable notification messages for senders, recipients, content owners, and system administrators. You can enable traffic enforcement through ICAP integration with ICAP-compliant web proxies for mitigating content violations over IM, FTP, HTTP, HTTPS, and webmail. You can enable mail enforcement through SMTP integration with mail transfer agent (MTA) devices.
Customize summary and detail views of incident logs and search results with DLP Prevent’s powerful analytics engine. You can create reports with optional trending data on demand or schedule for regular delivery. The system comes with over 20 preconfigured, customizable reports to get you started.
McAfee DLP Manager, McAfee DLP Monitor, McAfee DLP Discover, and McAfee DLP Prevent are now supported on the McAfee DLP 5500 appliance. The DLP 5500 appliance is an Intel-based platform with dual six core CPUs, 32 GB of RAM and over 10 TB of storage in a 2U form factor. DLP hardware appliance solutions are self-contained devices. There are no minimum software or hardware system requirements or additional database installations required.
The Network DLP 4400, Network DLP 1650, and Network DLP 3650 appliances have been discontinued. In accordance with McAfee’s End of Life policy, they are being supported until October 2016.
For a technical summary on the McAfee product listed above, please view the product data sheet.
Together, Boldon James Classifier and McAfee Network Data Loss Prevention reduce the risk of data loss by applying the insight of each knowledge worker to data loss prevention decisions. Classifier captures the user’s knowledge of the business value of data in the form of visual and metadata markings applied to messages and documents.
Selling stolen data is an easy way for cybercriminals to make some quick money on cyber black markets. The following flowchart shows a generic credential-stealing campaign in action. In the last step, the flow is bidirectional. The malware makes a two-way authentication-free connection between the victim and the attacker. This two way connection not only […]
The post When Hackers Get Hacked: the Malware Servers of a Data-Stealing Campaign appeared first on McAfee.
You’ve probably heard of people storing information in “the cloud,” but what does that really mean, and is it safe to put your data there? The cloud is best described as a network of servers offering different functions. Some servers allow you to store and access data, while others provide an online service. You may […]
Lately, McAfee Labs has observed a lot of active samples detected as Trojan Laziok by many security vendors. According to online reports, the Trojan Laziok is dropped via an exploit of the Microsoft Windows Common Controls ActiveX Control Remote Code Execution Vulnerability (CVE-2012-0158), which arrives via a spam email. In contrast, we have identified the […]
The post Kraken/Laziok HTTP Bot Controls Victims With Remote Admin Tool appeared first on McAfee.
In recent days, much has been said and written around the recently disclosed “Venom” vulnerability. It is important to fully understand the real-world severity of vulnerabilities such as Venom. Although the threat is potentially severe and certainly interesting (it is in a class of relatively rare guest escapes from virtual machines), one has to take into […]
Written by Deepak Choudhary There are always risks involved when relying on a third party to send and receive sensitive data over secure network channels. While we recognize the roles of the Public Key Infrastructure (PKI) and third party certificate authority (CA), we also believe that Certificate SSL Pinning can play a key role in […]