DeepNines' Sleuth9 Immediately Stops MyDoom and Other Zero-Day Cyber Attacks at the Perimeter of the Network.Business Editors/High-Tech Writers DALLAS--(BUSINESS WIRE)--Jan. 30, 2004 The Intrusion Prevention Solution Sits Inline, Invisibly, in Front of the Router to Stop MyDoom and Other Blended Attacks with Its Integrated Gateway Anti-Virus Functionality DeepNines Technologies, the only company to offer a security platform that includes firewall, intrusion prevention and gateway anti-virus functionality in front of the router, today announced its Sleuth9 Security System instantly stops MyDoom, the blended threat and zero-day attack. MyDoom, also known as Novarg, clones itself by sending emails to addresses from address books and files with the following extensions: WAB WAB Windows Address Book (file extension for Microsoft Outlook and Exchange) WAB Western Academy of Beijing WAB Westinghouse Air Brake Technologies Corp. , TXT TXT Text TXT Text File (filename extension) TXT Textile TXT Teletext TXT Tecnologia per a Tothom TXT Textron Corporation (stock symbol) , HTM HTM HyperText Markup (file extension) HTM Hand To Mouth HTM harmful-to-minors HTM Held-to-Maturity HTM High Tide Mark HTM Hazlo tĂș mismo (Spanish: do it yourself) HTM Hierarchical Temporal Memory , SHT sht - server-parsed HTML , PHP (PHP Hypertext Preprocessor) A scripting language used to create dynamic Web pages. With syntax from C, Java and Perl, PHP code is embedded within HTML pages for server side execution. , ASP, DBX DBX Data Bus Accelerator DBX Debugger for Unix DBX Digital Private Branch Exchange DBX Data Base Extension DBX Dolby Stereo DBX Debugging Tools DBX Digital Branch Exchange DBX Extended Debugger DBX Data Byte X , TBB TBB Threading Building Blocks TBB Tauberbischofsheim TBB Tampa Bay Buccaneers (NFL team) TBB Transbronchial Biopsy TBB The Big Bang (song) TBB Telecommunications Bonding Backbone TBB The Blues Brothers , ADB (Apple Desktop Bus) A low-speed serial bus for connecting keyboards, mice and other input devices on Apple IIgs and Macintosh computers. Starting with the iMac in 1998, the ADB was superseded by USB. and PL. Using its own SMTP (Simple Mail Transfer Protocol) The standard e-mail protocol on the Internet and part of the TCP/IP protocol suite, as defined by IETF RFC 2821. SMTP defines the message format and the message transfer agent (MTA), which stores and forwards the mail. engine, MyDoom also opens a backdoor and launches a Denial of Service A condition in which a system can no longer respond to normal requests. See denial of service attack. (DOS) attack against www.sco.com and www.microsoft.com. Companies that have Sleuth9 deployed in front of the router, are finding that approximately 1.5 out of every 10 emails are infected and they are successfully blocking those emails at the perimeter, thus preventing MyDoom from impacting the network. Companies with host-based anti-virus solutions cannot prevent this attack because this blended threat contains its own SMTP engine to construct outgoing messages; and travels with a peer-to-peer propagation routine. Unlike host-based anti-virus solutions, Sleuth9 monitors all traffic, including peer-to-peer and STMP STMP - Did you mean SMTP? traffic not necessarily traveling port 25, and can instantly identify and block the traffic anomalies generated by MyDoom. With its patent-pending DOS prevention technology, Sleuth9 also eliminates the DOS payload and backdoors that MyDoom creates. "New viruses like MyDoom and Mimail often attempt to send email messages using a built-in SMTP engine. These tactics bypass the normal SMTP host and any Anti-virus that it has," said Buz Dale, information security specialist for the University System of Georgia The University System of Georgia (USG) is the organizational body that includes all public institutions of higher learning in Georgia. The System is governed by the Georgia Board of Regents. . "Scanning or blocking SMTP traffic at the perimeter may be the only way to prevent this kind of malicious traffic from leaving your network." Sleuth9 stops MyDoom, along with other zero-day attacks, by inspecting all email at the perimeter before infections can penetrate the network. If the worm is detected, the malicious traffic is blocked and administrators are automatically notified. When an infected machine connects to the network and an infected email passes through Sleuth9, the system will automatically detect and stop the worm as well. With Sleuth9's ForensiX Capture System, IT professionals can access IP and other relevant traffic information to identify and eliminate security vulnerabilities related to MyDoom and other blended attacks. "From Mimail, to Nachi, Bagel and now MyDoom, self-propagating worms and zero-day attacks continue to challenge traditional, desktop and host-based anti-virus security models," said Dan Jackson, DeepNines' president and COO. "The bottom-line is companies must put in place an integrated security solution at the perimeter of the network. Only DeepNines can arm organizations with an integrated security platform that sits inline, invisibly, in front of the router and includes firewall, intrusion prevention and gateway anti-virus functionality." The Sleuth9 Security System is a proactive, intelligent, intrusion prevention and anti-virus solution specifically designed to stop complex, blended threats. Sleuth9 detects and automatically prevents cyber attacks from entering or leaving a network by forming a new perimeter of defense against DoS, DDoS, Trojan horses, self-propagating attacks, worms and viruses as well as other attacks launched from infected internal or external computers. Sleuth9 can be deployed at the perimeter of the network or in front of other likely targets such as web servers, mail servers, application servers, etc. About DeepNines, Inc. DeepNines develops scalable security software applications for Global 2000 companies and organizations in the healthcare, financial services, government, education, technology, manufacturing, retail, and MSP sectors. Sleuth9, the Company's patent-pending security system, is a fully automated and integrated attack mitigation, intrusion prevention and anti-virus solution that operates outside the network infrastructure providing organizations with network uptime deep into the nines. Sleuth9 is built on the DeepNines Technology Platform, which serves as the single, centralized network security and traffic management system for an entire organization. To learn more about DeepNines visit www.deepnines.com or call 214-273-6996. DeepNines, Inc., DeepNines Technologies, Sleuth9 Security System, Sleuth9, are trademarked and/or copyrighted by DeepNines, Inc. All rights reserved. All other brands and products are trademarks and copyrights of their respective owners. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion