Bromium launches product integrating virtualization-based endpoint protection with monitoring, analytics

Tools

Bromium launched on Wednesday its advanced endpoint security product that integrates endpoint threat isolation, threat analysis, and continuous host monitoring to enable enterprises to protect against, detect and respond to targeted attacks, zero-day threats and breaches.

Bromium Advanced Endpoint Security includes several modules: endpoint protection that uses micro-virtualization to isolate websites, email, documents, USB and executables; endpoint monitoring to track trusted content for potentially risky and known bad actions; and threat analysis that delivers attack forensics to enable an automated response to security events.

Simon Crosby, chief technology officer at Bromium, told FierceITSecurity that the new product is designed "to protect the enterprise from breach, to detect with basically no false-positives malware that executes in the micro-VM [virtual machine], and then to detect a breach that is in progress in the enterprise if an attacker is moving laterally within the organization."

The endpoint security suite also extends Windows 10 Device Guard to isolate, defeat and remediate attacks from the Web, untrusted files, executables and thumb drives.

Commenting on advanced threats and endpoint security, Gartner analysts Neil MacDonald and Peter Firstbrook wrote: "Enterprises are overly dependent on blocking and prevention mechanisms that are decreasingly effective against advanced attacks. Comprehensive protection requires an adaptive protection process integrating predictive, preventive, detective and response capabilities."

For more:
- see the Bromium release
- read the blog post

Related Articles:
Wendy's investigates possible credit card breach at some locations
Bromium, Microsoft combine forces to secure Windows 10 with micro-virtualization
Bromium beefs up endpoint security products with enterprise controller