The Need For A Better Security Management System

The Need For A Better Security Management System

Actionable Threat Intelligence Is Critical To Defend Against Advanced Malware

Reuters and Bloomberg Businessweek recently published more details about a highly publicized cyber security compromise.  Despite traditional APT security technologies detecting malware, the alarms went unnoticed.  Apparently the threat was labeled as “malware.binary” and, according to Bloomberg Businessweek, “security personnel don’t get excited about such generic labels because it does not provide much information about those threats.”

This type of breach incident highlights the lack of adequate advanced malware security management capabilities by traditional APT security technologies.  Let’s take a look at how Lastline compares to traditional technologies.


Traditional APT Security Technology Provides Data Overload:  If any security system generates generic alarms it can very easily overload security personnel with data, placing the burden on the staff to either sift through the puzzle pieces or simply ignore alarms that are not understandable.  Security systems should not place that operational burden on security personnel.  Security systems should make the job easier for security personnel, not harder.

Next-Generation Advanced Malware Security Management Provides Actionable Intelligence:  In contrast, Lastline’s advanced malware protection platform correlates multiple low-level events into high-level incidents, to empower security personnel with the intelligence necessary to take action.  Advanced malware security management requires timeliness and global view with detailed drill-down capabilities to understand the entire threat taxonomy.

With today’s wave of advanced malware attacks, it’s simply not enough to throw event alerts at security personnel and expect them to put the pieces of the puzzle together, especially with so much at risk.  Better advanced malware security management is not a luxury, but a “must-have.”