RSA Conference News Roundup, Day One

Cisco has also augmented AMP for Endpoints with an upgraded anti-ransomware engine informed by research into the cyber underworld’s latest encryption techniques, as well as new defenses against file-less attacks. The latter feature can block out malware that resides solely in memory, shielding endpoints from sophisticated assaults even when offline.

A new cloud-based addition to AMP for Endpoints named Cisco Visibility, meanwhile, consolidates threat intelligence from Talos, Cisco Umbrella Investigate, Threat Grid, and AMP, among other sources, and combines it with data about internal security events and alerts to help technicians diagnose and respond to breaches faster.

Cisco also announced an agreement to incorporate domain security and anti-phishing technology from Agari Data Inc., of San Mateo, Calif., into its Email Security product. The new Cisco Domain Protection service uses the Domain-Based Message Authentication, Reporting, and Conformance authentication standard, plus real-time reporting, to warn businesses of noncompliant emails sent from their domains. The Cisco Advanced Phishing Protection service draws on machine learning capabilities to block advanced identity deception attacks in inbound emails.

“Cisco understands that protecting employees and their endpoints requires more than just antivirus. Attackers leverage the Internet, email, and the network as vectors for breaching the endpoint,” said Jeff Reed, senior vice president of product for Cisco’s Security Business Group, in a press statement. “We deliver greater employee protection using cloud-delivered defense against threats hosted on the Internet. Cisco is also now one of the few organizations paving the way toward eliminating email identity deception. Through our expanded partnership, investments, and technology innovations, we are committed to delivering to our customers the best email and endpoint protection.”