FireEye is adding support for Apple iOS devices and Mac OS X systems and may be planning to launch broader endpoint threat detection capabilities, according to FireEye CEO Dave DeWalt.
![]()
DeWalt spoke to attendees at the MIRcon 2014 incident response conference, where he touted the Apple support built into the company’s NX series appliances as well as its mobile and analysis gear.
DeWalt also hinted that the company may push more broadly into endpoint detection. The goal, according to DeWalt is to create a malware detection and prevention platform that includes threat analysis and response capabilities and services.
Jamf Launches Jamf Protect, Enterprise Endpoint Protection Built for Mac. FireEye Launches Digital Threat Monitoring to Protect Organizations' Brands,.
[Related: True Detectives: VARs On The Case As The Need For Incident Response Strategies Gets More Evident Every Day]
’We’re building out a complete endpoint and network architecture,’ DeWalt said ’This is a global Security-as-a-Service model that is powerful and adaptive in its capabilities and partner friendly.’
Network security vendors are adding more endpoint security components to gain visibility into mobile devices, PCs and servers. Palo Alto Networks unveiled its Traps endpoint security offering last month, differentiating its capabilities from FireEye and other competitors by proactively blocking known malware techniques.
FireEye recently introduced its Security-as-a-Service model that offers customers the ability to choose between paying up front or as a subscription. Customers can also pay for Mandiant’s services team, use an in-house security team or contract with a managed security services provider to monitor and manage its virtual appliances.
New products will always have a channel component, said FireEye channel chief Steve Pataky. Pataky admitted some of Mandiant’s services overlap with some systems integrators and managed service providers, but added that capable solution providers can provide support and services on behalf of FireEye customers.
’Regardless of where we are playing in the product portfolio there will always be a channel play,’ Pataky said. ’We have to figure out if we’re selling into a different decision maker and our job will be to arm partners with the right enablement.’
Mandiant is a services company at the endpoint, while FireEye is at the perimeter which offers benefits to each other, said Rick Doten, chief information security officer at Bethesda, Md.-based mobility solutions provider Digital Management. FireEye is also partnering with vendors at the endpoint to automate response, validate false positives and quarantine threats.
’If I have things that can prevent and then identify the attack, I gain a comprehensive response capability that wins,' Doten said.
FireEye’s HX series appliances use agent-based technology to detect malware, isolate compromised devices and triggers an alert for incident responders to investigate threats. The company’s acquisition of Mandiant adds services, but also Mandiant Incident Response (MIR). The endpoint software can sweep endpoint devices and examine live memory for malware, suspicious system behaviors and attacker techniques. The software can also automatically drill down into an endpoint system to gain context about an alert.The company also acquired nPulse Technologies, selling the network recorder to aid forensics investigators.
Brad Wilkins, a product sales manager at Tarrytown, N.Y.-based distributor WestconGroup, said his company is seeing steady sales growth since it added FireEye to its offerings about two years ago. There’s room for further growth in the upper midmarket where companies are adding FireEye in addition to next-generation firewalls, Wilkins said.
’The solution takes a partner with a strong skill set to deploy and maintain them,’ Wilkins said. ’Options are available for SMBs and partners and distributors are rewarded well.’
PUBLISHED OCT. 7, 2014
FireEye, Inc. (NASDAQ: FEYE), the leader in stopping today's advanced cyber attacks, today announced targeted attack protection for products built on the Apple platform. FireEye will support Apple’s Mac OS X operating system for network protection, iOS for mobile protection to detect known and unknown attacks, and enable analytics with forensic analysis for Apple products. With Mac support incorporated into the FireEye® Network Security Threat Prevention Platform (NX series), FireEye Forensic Analytics (AX series), FireEye Mobile Threat Prevention (MTP) and the FireEye Investigation Analysis System(IAS), the company is the first security vendor to offer an integrated solution to protect Microsoft, Apple and Google Android platforms with technology purpose-built to identify and mitigate advanced persistent threat (APT), zero-day, and targeted attacks.
FireEye Advanced Threat Protection NX and AX with OS X support are generally available now. The FireEye Mobile Threat Prevention App for iOS will be generally available by the end of 2014.
“As enterprises evolve and the Apple footprint grows within them, advanced threat actors are turning their attacks to Apple products to carry out their work,” said Manish Gupta, senior vice president of products at FireEye. “By adding support for Apple, we are providing the only unified security platform for the top operating systems to protect enterprises from multi-vector attacks. With our proven ability to detect zero-day attacks, both Mac and Windows organizations can now benefit from the industry’s best threat protection.”
According to a report by Forrester Research, almost 50 percent of enterprises support Apple products, 21 percent of information workers use one or more Apple products for work, and executives and senior-level employees – often the prime targets of advanced attackers – represent 41 percent of enterprise Apple users. Such increased use of Apple products has caught the attention of attackers, with FireEye Labs seeing malware callbacks from Macs increase 90 percent month over month from June 2013 to June 2014. In September, FireEye Labs reported on malware specifically targeting Mac OS X.
“By supporting Apple, FireEye can now protect nearly all personal computers in the enterprise environment from advanced attacks,” said Jon Oltsik, senior principal analyst at Enterprise Strategy Group. “More importantly, since many executives, researchers and other VIPs who work with intellectual property are frequently Apple users, this new FireEye capability can help focus protection where it’s needed most – high-priority systems where sensitive data and expansive access privileges reside.'
The FireEye Multi-vector Virtual Execution™ (MVX™) engine with support for Mac OS X is offered on the FireEye NX 7500 network security platform. The FireEye MVX engine with Mac support performs multi-flow analysis of traffic flows, files, and Web objects to understand the full context of a cyber attack. The FireEye MVX virtual machine-based detection engine is scalable and evasion resistant, delivering in-line analysis of suspicious content in real-time with minimal false positive alerts. With Mac OS X support incorporated into the MVX detection engine, FireEye is the first security vendor to be able to protect both Windows and Apple users from today’s advanced targeted attacks. The NX Series with Apple support is designed to provide customers with additional benefits including:
To support iOS, FireEye will provide a Mobile Threat Prevention App in Apple’s App Store. This app, like its Android sibling, works with MTP Management to provide proactive protection. The iOS MTP app is a lightweight app designed for users of iOS mobile devices to benefit from:
Finally, with the FireEye AX 5500 forensic analysis security platform, customers will have enhanced global threat intelligence from the FireEye Dynamic Threat Intelligence™ (DTI™) cloud with data drawn from attacks targeting Macs and the ability to correlate attacks across Microsoft Windows, Mac OS X, and Google Android platforms.
About FireEye, Inc.
FireEye has invented a purpose-built, virtual machine-based security platform that provides real-time threat protection to enterprises and governments worldwide against the next generation of cyber attacks. These highly sophisticated cyber attacks easily circumvent traditional signature-based defenses, such as next-generation firewalls, IPS, anti-virus, and gateways. The FireEye Threat Prevention Platform provides real-time, dynamic threat protection without the use of signatures to protect an organization across the primary threat vectors and across the different stages of an attack life cycle. The core of the FireEye platform is a virtual execution engine, complemented by dynamic threat intelligence, to identify and block cyber attacks in real time. FireEye has over 2,500 customers across 65 countries, including over 150 of the Fortune 500.
Forward-Looking Statements
This press release contains forward-looking statements, including statements related to the expectations, beliefs, features and benefits of FireEye’s new NX, AX and Mobile Threat Prevention Platforms supporting Apple products and the general availability of the Mobile Threat Prevention App for iOS mobile devices. These forward-looking statements involve risks and uncertainties, as well as assumptions which, if they do not fully materialize or prove incorrect, could cause the performance of these new platforms and FireEye’s results to differ materially from those expressed or implied by such forward-looking statements. The risks and uncertainties that could cause our results to differ materially from those expressed or implied by such forward-looking statements include customer demand and adoption of FireEye’s solutions; real or perceived defects, errors or vulnerabilities in FireEye’s products or services; FireEye's ability to maintain favorable relationships with software providers; FireEye’s ability to react to trends and challenges in its business and the markets in which it operates; FireEye’s ability to anticipate market needs or develop new or enhanced products and services to meet those needs; and general market, political, economic, and business conditions; as well as those risks and uncertainties included under the captions “Risk Factors” and “Management’s Discussion and Analysis of Financial Condition and Results of Operations,” in FireEye’s quarterly report on Form 10-Q filed with the Securities and Exchange Commission on August 13, 2014, which is available on the Investor Relations section of the company’s website at investors.FireEye.com and on the SEC website at www.sec.gov. All forward-looking statements in this press release are based on information available to the company as of the date hereof, and FireEye does not assume any obligation to update the forward-looking statements provided to reflect events that occur or circumstances that exist after the date on which they were made. Any future product, service, feature, benefit or related specification that may be referenced in this release are for information purposes only and are not commitments to deliver any technology or enhancement. FireEye reserves the right to modify future product and services plans at any time.
Media contact:
Vitor De Souza
FireEye, Inc.
415-699-9838
Investor Contact:
Kate Patterson
FireEye, Inc.
408-321-4957
![]() ![]()
© 2014 FireEye, Inc. All rights reserved. FireEye, Multi-vector Virtual Execution, MVX, Dynamic Threat Intelligence and DTI are registered trademarks or trademarks of FireEye, Inc. in the United States and other countries. Apple, Mac, OS X, iOS and App Store are trademarks of Apple Inc., registered in the U.S. and other countries. Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. Google and Android are trademarks of Google Inc. All other brands, products, or service names are or may be trademarks or service marks of their respective owners.
![]() Comments are closed.
|
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |