2009 Press Releases

Enterprises Confront the Ugly Truth of Hidden Malware in Their Networks

Trend Micro security threat assessments help enterprises discover stealthy malware slipping through their security systems.

 

CUPERTINO, Calif., July 7, 2009 -- Enterprises thathave invested time, money and resources into implementing top-tiersecurity products for their organizations were confronted with realitywhen they took advantage of the Trend Micro security threat assessment- a risk-free, 2-week security assessment that allows Trend Micro tomonitor an enterprise's security environment and help them discoverhow, why and where security threats happen.

Not as Secure as They Think

Enterprises that thought they were secure discovered otherwise: Thesecurity threat assessment uncovered active malware and threats thathad slipped through existing security infrastructures, and wereresiding undetected on corporate networks and endpoints on 100 percentof all participating companies from North America, Latin America,Europe and Asia Pacific. On average, these companies have over 11,000employees and include those from the finance, heath care, government,education and manufacturing industries.

"The results garnered from our security threat assessment prove thatas threats become more numerous and sophisticated, conventionalsecurity technologies such as endpoint antivirus, Web securitygateways, email security gateways and IPS solutions are struggling tokeep up," said Jai Balasubramaniyan, director of product management andmarketing. "The types of malware we found were more than just anuisance, they were malicious and designed to steal data."

Trend Micro security threat assessment provides an opportunity forparticipating enterprises to measure the effectiveness of their currentsecurity infrastructure. In just two-weeks, Trend Micro can reveal theanswer in a customized executive report that identifies any securitygaps and pinpoints exactly where the malware resides.

Between October 2008 and June 2009, Trend Micro performed over 100 assessments on enterprises worldwide and discovered that: 

  • 100 percent of them were infected with active malware.
  • 50 percent had at least one data-stealing malware hidden in their networks.
  • 45 percent had multiple data-stealing malware infections.
  • 72 percent had at least 1 IRC bot.
  • 50 percent had 4 or more IRC bots.
  • 83 percent had at least 1 malware Web download.
  • 60 percent had more than 20 malware Web downloads.
  • 35 percent had at least 1 network worm.(1)

     

What's Causing These Security Gaps?

While traditional security solutions are critical for a first lineof defense, organizations still face a number of security gaps that arecontinuously exploited by modern-day malware. Today's stealthy malwareinfiltrate corporate networks for a variety of reasons:

  • Mobile users who go on and off the network with infected devices that compromise corporate networks.
  • Inadequate remote office security, lack of onsite IT personnel, and lax policy enforcement impact security.
  • Increased usage of easily exploited technologies such as P2P, file sharing, streaming media, and instant messaging.
  • Unmanagedand unpatched endpoints such as legacy systems, contractors and guestlaptops, USB devices, and other portable and mass storage devices.

     

Discover How, Why, and Where Threats Occur

Trend Micro security threat assessment utilizes a non-invasive,listen-only appliance that doesn't interfere with network operations.

Trend Micro engineers quickly install the assessment appliance atthe network layer on the core switch where it monitors network trafficto detect resident malware activities, such as botnets. The appliancealso monitors inbound email and Web traffic to detect potentiallyinfected messages and suspicious Web sites.

Traffic received by the appliance is analyzed using a combination ofTrend Micro's scanning engines and technologies and integrates with theTrend Micro Smart Protection Network, a next-generation, cloud-clientsecurity architecture that provides a unique approach to blockingviruses, spyware, spam, and Web threats before they reach businessnetworks

At the end of the risk-free, 2-week assessment, Trend Micro will issue an enterprise-specific report that:

  • Examines potential vectors of infection.
  • Identifies malware, information stealers, affected assets, infection sources, and disruptive applications.
  • Pinpoints specific problem areas by IP address
  • Increases visibility intothe company's security network for better understanding of how thethreats occurred, where they entered the network, and how to fillsecurity gaps.

     

Part of Trend Micro™ Enterprise Security

Trend Micro security threat assessment is part of Trend MicroEnterprise Security - a tightly integrated offering of content securityproducts, services and solutions which is powered by the Trend Micro™Smart Protection Network™. Trend Micro Enterprise Security deliversimmediate protection from emerging threats while greatly reducing thecost and complexity of security management.

To learn more about Trend Micro Threat Management Services and toget started with a security threat assessment, contact a Trend MicroEnterprise sales representative or visit us online at http://go.trendmicro.com/thinkagain/form.php.

About Trend Micro:

Trend Micro Incorporated, a global leader in Internet contentsecurity, focuses on securing the exchange of digital information forbusinesses and consumers. A pioneer and industry vanguard, Trend Microis advancing integrated threat management technology to protectoperational continuity, personal information, and property frommalware, spam, data leaks and the newest Web threats. Visit TrendWatchat www.trendmicro.com/go/trendwatchto learn more about the latest threats. Trend Micro's flexiblesolutions, available in multiple form factors, are supported 24/7 bythreat intelligence experts around the globe. Many of these solutionsare powered by the Trend Micro Smart Protection Network, a nextgeneration cloud-client content security infrastructure designed toprotect customers from Web threats. A transnational company, withheadquarters in Tokyo, Trend Micro's trusted security solutions aresold through its business partners worldwide. Please visit www.trendmicro.com.

(1) Data based on 60 assessments