2
Page 1 of 2 DATASHEET TIPPINGPOINT ADVANCED THREAT PROTECTION FOR MAIL DATASHEET Targeted attacks and advanced threats have proven their ability to evade conventional security defenses and exfiltrate sensitive data and intellectual property. Trend Micro research shows that more than 90 percent of these attacks begin with a spear-phishing email containing a malicious attachment or URL that is undetectable by standard email or endpoint security. TippingPoint Advanced Threat Protection for Mail is a hardware appliance that uses advanced detection techniques to identify and block spear phishing emails that are often part of the initial phase of a targeted attack. Working in tandem with your secure email gateway, it adds a layer of advanced threat detection and protection beyond the capabilities of your current defenses, to stop attackers at the point of entry to your network. Transparent Works seamlessly with an existing spam filter or secure email gateway to detect email spear phishing attacks that use attachments and URLs to conceal advanced malware including ransomware (often buried within macros). Extensive detection techniques Detects zero-day exploits, advanced threats, and attacker behavior. Advanced Threat Protection for Mail uses techniques such as file, IP and web reputation, static analysis, heuristic analysis, algorithms and custom sandbox analysis to detect known and unknown threats. Flexible Options to use any of the following deployment options: inline blocking, quarantine, logging, or removing a detected threat from an email and notifying the user. Custom sandbox analysis Uses virtual images that are tuned to precisely match your system configurations, drivers, installed applications and language versions. This approach improves the detection rates of advanced threats that are designed to evade standard virtual images. The custom sandbox environment includes safe external access to identify and analyze multi-stage downloads, URLs, command and control (C&C) and more. KEY CAPABILITIES Key Benefits Targeted email protection Stops the spear phishing emails that start most targeted attacks Custom sandboxing detection Finds the threats invisible to standard email security Transparency and compatibility Works seamlessly with your existing email security solutions Flexible Mitigate email threats by blocking inline, quarantine, logging, or removing the threat and notifying the recipient 2015 Breach Detection Tests MOST EFFECTIVE Recommended Breach Detection System Trend Micro Deep Discovery NSS LABS RECOMMENDED NSS LABS RECOMMENDED Trend Micro TIPPINGPOINT ® ADVANCED THREAT PROTECTION FOR MAIL Stop the targeted email attacks that can lead to a data breach

DS01_ATP_Email_160504US

Embed Size (px)

Citation preview

Page 1: DS01_ATP_Email_160504US

Page 1 of 2 • DATASHEET • TIPPINGPOINT ADVANCED THREAT PROTECTION FOR MAIL

DATASHEET

Targeted attacks and advanced threats have proven their ability to evade conventional security defenses and exfiltrate sensitive data and intellectual property. Trend Micro research shows that more than 90 percent of these attacks begin with a spear-phishing email containing a malicious attachment or URL that is undetectable by standard email or endpoint security.

TippingPoint Advanced Threat Protection for Mail is a hardware appliance that uses advanced detection techniques to identify and block spear phishing emails that are often part of the initial phase of a targeted attack. Working in tandem with your secure email gateway, it adds a layer of advanced threat detection and protection beyond the capabilities of your current defenses, to stop attackers at the point of entry to your network.

TransparentWorks seamlessly with an existing spam filter or secure email gateway to detect email spear phishing attacks that use attachments and URLs to conceal advanced malware including ransomware (often buried within macros).

Extensive detection techniques Detects zero-day exploits, advanced threats, and attacker behavior. Advanced Threat Protection for Mail uses techniques such as file, IP and web reputation, static analysis, heuristic analysis, algorithms and custom sandbox analysis to detect known and unknown threats.

FlexibleOptions to use any of the following deployment options: inline blocking, quarantine, logging, or removing a detected threat from an email and notifying the user.

Custom sandbox analysisUses virtual images that are tuned to precisely match your system configurations, drivers, installed applications and language versions. This approach improves the detection rates of advanced threats that are designed to evade standard virtual images. The custom sandbox environment includes safe external access to identify and analyze multi-stage downloads, URLs, command and control (C&C) and more.

KEY CAPABILITIES

Key Benefits

Targeted email protectionStops the spear phishing emails that start most targeted attacks

Custom sandboxing detectionFinds the threats invisible to standard email security

Transparency and compatibilityWorks seamlessly with your existing email security solutions

FlexibleMitigate email threats by blocking inline, quarantine, logging, or removing the threat and notifying the recipient

2015 Breach Detection Tests

MOST EFFECTIVERecommended BreachDetection System

Trend Micro™ Deep DiscoveryNSSLABS

RECOMMENDED

NSSLABS

RECOMMENDED

Trend Micro

TIPPINGPOINT® ADVANCED THREAT PROTECTION FOR MAILStop the targeted email attacks that can lead to a data breach

Page 2: DS01_ATP_Email_160504US

Page 2 of 2 • DATASHEET • TIPPINGPOINT ADVANCED THREAT PROTECTION FOR MAIL

CRITICAL PART OF YOUR ADVANCED THREAT PROTECTION

Advanced Threat Protection for Mail works seamlessly with existing email gateway or server security products. When deploying the appliance there are several options to choose from:

• Message Transfer Agent mode – maximize the protection putting the appliance in-line to detect and block malicious emails.

• BCC and SPAN/TAP mode – monitor all email and receive alerts to anything suspicious and not in-line

To bypass traditional security systems and avoid detection, attackers use a variety of methods to conceal malicious code. To detect these advanced attacks, zero-day exploits and suspicious URLs, Advanced Threat Protection for Mail uses a number of techniques, including:

• File, IP and web reputation

• Heuristic analysis

• Customized rules

• Custom sandbox analysis (for attachments and URLs)

• Correlated threat intelligence.

When threats are found in emails you can’t just delete the emails—you need to have options. Advanced Threat Protection for Mail gives you the power to mitigate discovered email threats by using one of the following deployment options:

• In-line blocking

• Quarantine

• Logging

• Removing the detected threat from an email and notifying the recipient

©2016 by Trend Micro Incorporated. All rights reserved. Trend Micro, the Trend Micro t-ball logo, OfficeScan, TippingPoint and Trend Micro Control Manager are trademarks or registered trademarks of Trend Micro Incorporated. All other company and/or product names may be trademarks or registered trademarks of their owners. Information contained in this document is subject to change without notice.[DS01_ATP_Email_160504US]

Detect and Protect Against

• Targeted attack and advanced threats

• Zero-day malware and document exploits

• Attacker behavior and other network activity

• Web threats, including exploits and drive-by-downloads

• Phishing, spear phishing, and other email threats

• Data exfiltration

• Bots, Trojans, worms, keyloggers

• Disruptive applications

NETWORK DEFENSE

Advanced Threat Protection for Mail is at the heart of the Trend Micro Network Defense, weaving your security infrastructure into a comprehensive defense tailored to protect your organization against targeted attacks.

Advanced Threat Protection’s custom detection, intelligence, and controls enable you to:

• Detect and analyze attacks

• Rapidly respond before sensitive data is lost

SPECIFICATIONS Model 7100 Model 9100

Deployment Options MTA, BCC, SPAN/TAP modes MTA, BCC, SPAN/TAP modes

Capacity Up to 400,000 emails/day Up to 800,000 emails/day

Form Factor 1U Rack-Mount, 48.26 cm (19”) 2U Rack-Mount, 48.26 cm (19”)

Dimensions 43.4 (17.09”) x 64.2 (25.28”) x 4.28 (1.69”) cm

43.4 (17.09”) x 75.58 (29.75”) x 8.73 (3.43”) cm

Weight 19.9 Kg (43.87 lbs) 31.5 Kg (69.45lb)

Management Ports 10/100/1000 BASE-T RJ45 Port x 1iDRAC Enterprise RD45 x 1

10/100/1000 BASE-T RJ45 Port x 1iDRAC Enterprise RD45 x 1

Data Ports 10/100/1000 BASE-T RJ45 x 3 10/100/1000 BASE-T RJ45 x 3

AC Input Voltage 100 to 240 VAC 100 to 240 VAC

AC Input Current 7.4A to 3.7A 10A to 5A

Hard Drives 2 x 600 GB 2.5 inch SAS 2 x 4TB 3.5 inch SATA

Internet Protocol Support IPv4 / IPv6 1 IPv4 / IPv6

RAID Configuration RAID 1 RAID 1

Power Supply 550W Redundant 750W Redundant

Power Consumption (Max) 604W 847W

Heat 2133 BTU/hr (Max.) 2891 BTU/hr (Max.)

Operating Temp. 10 to 35 °C (50-95 °F) 10 to 35 °C (50-95 °F)

Hardware Warranty 3 Years 3 Years

Optional Fiber NIC Dual Port Fiber Gigabit (SX/LX) Dual Port Fiber Gigabit (SX/LX)