Comodo, a global innovator and developer of cybersecurity solutions and the worldwide leader in digital certificates, today announced an updated Comodo Advanced Endpoint Protection (AEP) product that extends availability of its superior default-deny endpoint security to Mac OS X and Linux platforms, in addition to Microsoft Windows. It also adds many new capabilities, including enhanced Secure Auto-Containment™, protection against emerging fileless malware attacks and remote admin access and remote control.
The constant stream of enterprise disclosures of reputation-damaging and costly data breaches proves that both conventional and so-called next generation endpoint solutions using techniques such as machine learning are inadequate in stopping new, previously unknown malware and zero-day threats.
According to analyst firm Gartner Inc., “When 44 percent of reference customers for EPP solutions have been successfully compromised, it is clear that the industry is failing in its primary goal: blocking malicious infections.”
Comodo believes a primary reason is that the anti-malware industry stubbornly sticks to an outdated “default-allow” approach that permits unknown applications and files to run with unfettered access to system resources. Comodo AEP turns that 180 degrees around with its industry-leading “default-deny” approach that only allows known good applications to run with “default-allow” usability. Any unknown applications can only run in a Secure Auto-Containment environment that isolates system access, completely preventing even new and unknown zero-day malware from infecting the system. This process is transparent to users, maintaining their productivity while keeping the endpoint safe.
“The anti-malware industry is clearly broken because it has been chasing its own tail with a default-allow security approach that, by definition, is going to allow malware infections,” said Melih Abdulhayoglu, CEO and founder of Comodo. “The only effective way to stop zero-day, unknown threats is for our industry to move to a default-deny security posture—an auto-containment platform like Comodo’s AEP that stops giving unknown files unfettered access to computer resources.”
Comodo AEP is a complete endpoint protection platform comprising multiple security technologies, including anti-virus, host-based intrusion prevention system (HIPS), web filtering, personal firewall, white/blacklisting and Secure Auto-Containment. It also provides management and reporting in an integrated package that maximizes security and administration effectiveness while minimizing support burdens.
The latest AEP product’s new features and benefits include:
• Auto-containment of fileless malware that can affect system memory without leaving a file “fingerprint” that can be detected; provides granular security for command line parsers or executors (Windows commands, Python and PERL scripts)
• Updated management providing IT staff with easy access to and management of remote endpoints to save time and money, including:
o Automated management to remotely run scripts on devices and remote desktops
o New remote access tools for troubleshooting devices (remote monitoring and management or RMM)
o Improved monitoring and alert thresholds to generate notifications (email, ticket on service desk)
o Easy onboarding tool with auto-discovery and deployment; preconfigured package discovers devices on network and pushes agents per policies
• External device control detects any and controls every device and port; can disable functionality, lock down USB and enable exceptions based on device IDs
• Password protection for admins to lock down endpoints or clients
• Two-factor authentication providing enhanced security for administrator access
The new Comodo AEP product is available immediately, with Linux support scheduled for 1H17 release.