HackAvert
- 1. HackAvert ® SSL247.co.uk/HackAvert Protecting your website and its revenue has never been so easy
- 2. HackAvert ® SSL247.co.uk/HackAvert Summary • Why do I need to protect my site? • Which technologies are used? • How does HackAvert® help?
- 3. HackAvert ® SSL247.co.uk/HackAvert Pourquoi protéger mon site web? 21 000 9 500+ 7 to 10 days 75% ~ 4% <5% pages infected a day globally (Sophos) sites blacklisted by Google per day of lost revenue by infected sites on average currently have vulnerabilites of websites are currently infected of websites are protected (v’s 99% of PCs)
- 4. HackAvert ® SSL247.co.uk/HackAvert Good sites become distributors of malware User visits
- 5. HackAvert ® SSL247.co.uk/HackAvert Both big and small sites get infected…
- 6. HackAvert ® SSL247.co.uk/HackAvert What are the implications? Websites get blacklisted – All modern browsers block access to website Websites infect visitors – Users get hit with malware, data compromise Internal data gets compromised – Possible to steal data from internal systems (SQLi, RATs) A backdoor for further attacks – Hidden shells ( c99/c100/php and more)
- 7. HackAvert ® SSL247.co.uk/HackAvert The security game is changing *Threat Post (http://threatpost.com/en_us/blogs/security-game-needs-change-022912) Yesterday Tomorrow Focus: Vulnerability Assessment “Am I Vulnerable?” Problem: Can’t keep up patching Impact: Constantly vulnerable to attacks Doesn’t detect if infected. Can be infected for months Focus: Malware Detection w. auto cleanup “Am I Infected?” Patch vulnerability when infected Benefit: Immediate alert if infected Only patch relevant vulnerabilities Result: HackAvert keeps your site clean “Antivirus for your Website”
- 8. HackAvert ® SSL247.co.uk/HackAvert When choosing a solution, make sure it detects new dynamic, “never before seen malware” (in addition to viruses). Yesterday Today Tomorrow Traditional Viruses Traditional Viruses Traditional Viruses Malware Injections Malware Injections *Threat Post (http://threatpost.com/en_us/blogs/security-game-needs-change-022912) The move to Dynamic Web 2.0 malware requires new detection technology Malware Injections
- 9. HackAvert ® SSL247.co.uk/HackAvert Google acknowledging the problem
- 10. HackAvert ® SSL247.co.uk/HackAvert Important Technologies Malware Detection Vulnerability Assessment Reputation Monitoring What? - Is my site infected? - Am I hacked? - Am I infecting my visitors? - Is my internal data at risk? - Might I get blacklisted soon? “Anti Virus for your Website” - Is my site vulnerable? - Might I get hacked? - What patches should I apply? Note: Doesn’t tell if infected - Is my site blacklisted? Why? If infected you need to fix the problem before you get - blacklisted - compromise your data - infect your visitors If vulnerable, you need to fix the problem before you get - Hacked - Infected If blacklisted, you need to fix the problem so your customers can visit your site again.
- 11. HackAvert ® SSL247.co.uk/HackAvert Artificial Intelligence vs Signatures • HackAvert finds what others don’t: Proactive instead of reactive – Artificial Intelligence (AI) algorithms detect never before seen malware – Signature based solutions used by others not effective – 3 patents pending DB of Malware Instances Previous approaches: Signature-based fails AI detects never before seen malware Why Artificial Intelligence is needed Database of malware instances New malware
- 12. HackAvert ® SSL247.co.uk/HackAvert HackAvert scans and detects… html javascript php iframe redirections flash .exe docs ads http links
- 13. HackAvert ® SSL247.co.uk/HackAvert Important features & benefits • Web Malware Detection detects if a web site is infected AI-based engine detects unknown infections. Facebook Protection protects content on corporate wall Scans and fixes ALL pages Automatic Cleanup Option. (Or just let HackAvert inform you and remove the infected code yourself) • Vulnerability Assessments finds vulnerabilities in websites to fix (Server and Application level). • Blacklist & Reputation Monitoring notifies if a website is blacklisted by Google, Bing, Yahoo, DNS blacklist or similar. • Fully automated scans with email alerts – Weekly, Daily, Hourly or Continuously for increased security. • HackAvert Trust Seal
- 14. HackAvert ® SSL247.co.uk/HackAvert Automated malware removal (option) • Default option: let HackAvert notify you, and perform the clean yourself… • Easy set-up, automated removal is ideal for inexperienced users • Automatically removes malicious code without manual intervention if required • Only removes malicious line (not entire file) and restores a working website for continuous availability of the website • Includes time machine feature for easy restore of original file
- 15. HackAvert ® SSL247.co.uk/HackAvert Protect corporate image on Facebook Identify malicious links on Facebook corporate page.
- 16. HackAvert ® SSL247.co.uk/HackAvert Simple yet powerful dashboard within your MySSL account
- 17. HackAvert ® SSL247.co.uk/HackAvert Summary… • Websites are getting infected and blacklisted daily • Visitors are getting infected • The problem is growing fast • As with viruses on PCs, there IS a solution • Detects (and can remove) web malware • Scans all pages on your website • Scans corporate Facebook walls • Is backed by the US National Science Foundation