Resources

By focusing on user identity as the basis for security, identity-based UTM appliances offer a comprehensive Defense against current threat tactics. They are poised to become the next generation solutions to emerging IT security and compliance challenges.

Social Engineering Techniques Reach New Levels of Sophistication; Conficker keeps Security on Alert

The Q4 2008 email threat trend report, prepared in collaboration with partner Commtouch revealed that there was a huge drop in global spam in November to its lowest levels at 59%, from an average of 90+% earlier, due to the shutdown of McColo, one of the largest and most notorious spam-friendly web hosting service provider. Another significant story was the global financial crisis which has become an important pretext for spammers trying to lure unsuspecting email recipients with fake job offers, instant loans and cash advances.

The Q3 2008 email threat trend report, prepared in collaboration with partner Commtouch revealed spammers techniques to hide their bad reputation through the use of valid or reputed mail servers, mainly web mail accounts. Malware hidden in legitimate sites is on the rise. Spammers continue to use attractive content, like celebrities and doomsday announcements for greater effectiveness.

The Q2 2008 email threat trend report, prepared in collaboration with partner Commtouch revealed attacks on new user groups like ISPs, educational institutions, Google Adwords users and Microsoft users. The trend showed attacks on these large user groups by exploiting their psychological behavior and through media that they trusted the most.

The Q1 2008 email threat trend report revealed that malware distributors and spammers are now hiding their unwanted messages within legitimate-appearing Websites and messages. These tactics include pharma spam camouflaged as Hotmail welcome letters, blogspot redirects to malware sites, hidden malware sites in search result URLs, hosted spam images on Flickr accounts and spear-phishing scams using Google and Yahoo! Calendar standards. All of these methods deploy social and psychological engineering strategies to take advantage of user trust and behavior. On average, more than 350,000 zombies were newly activated each day to facilitate this activity.

In 2007, botnets grew significantly and have become more sophisticated in their operations. These highly distributed networks are capable of performing all types of malicious attacks (spam, malware, phishing, DDoS), and are becoming virtually impossible to take down. Social engineering approaches targeting user behavior patterns had also seen a steep rise during Q4 2007, where spammers launched attacks deploying easy cash and discounted gift scams.

The Q3 2007 report revealed that blended spam has become increasingly popular as a vehicle for web-based malware attacks. Zombies send spam messages without the usual virus attachments. Instead, they include text of a URL that hyperlinks to a website containing malicious software.

The Q2 2007 report revealed that PDF spam comprised 10-15% of all global spam messages during a 24-hour period. This new spam tactic takes advantage of the popularity of the PDF format, which prevents the adoption of broad blocking policies, such as those often enacted against .exe files.

Firewalls and anti-virus alone are not enough to provide comprehensive security to organizations when external threats like viruses, worms, Trojans, spam, are taking blended forms of attack. Learn how Unified Threat Management (UTM) appliances like Cyberoam, the all-in-one security appliances which carry firewall, VPN, gateway anti-virus, gateway anti-spam, IPS, content filtering, bandwidth management and multi-link management over a single appliance are offering comprehensive protection while lowering capital and operating expenses. Further, learn how Cyberoam's identity-based security that shows 'Who is doing What' and allows policies over the username counters internal threats which account for 50 % of all attacks.

Spam accounts for over 90 % all mail today. Unsolicited, unwanted phishing, pharming, spyware and other malware carrying emails, are not just a productivity issue, they cause serious security breaches too. Read about evolving spam techniques and their implication to organizations.

Viruses and other malware have far reaching financial, security and productivity implications to organizations. Read the scenarios where virus enters via different protocols like SMTP, POP3, IMAP, HTTP, FTP, the security implications of each and how Cyberoam UTM's granular anti-virus security offers protection against malware.

Intrusion Prevention Systems are an essential feature of network security. Read scenarios of external and internal intrusions that can be prevented through IPS and the need for user identity. Only Cyberoam UTM offers identity-based IPS that ensures effective security.

Spyware poses a serious threat to information security, causing data leakage, tracks user activity and is an important component of the illegal online trade in personal information. Cyberoam's blended protection through firewall and content filtering prevents spyware from entering the network.

Phishing is a threat to user and organization's security, causing leakage of personal credentials that leads to exposure of intellectual property and financial loss. Using deceptive emails that lure users to malicious websites and dupe them into disclosing their personal details, they are a serious threat to corporate and personal data. Cyberoam's blended protection with content filtering and anti-spam provides effective protection against phishing.

Pharming uses social engineering to obtain access credentials such as usernames and passwords of the Internet users. It is therefore vital that organizations secure themselves early on against such scams. Through its blended approach, using features like Spyware Blocker, anti-spam, anti-virus, content filtering solutions, Cyberoam delivers dependable protection against pharming attacks with no extra cost involved for this security.

Indiscriminate Internet surfing and bandwidth-guzzling downloads by internal users leave enterprises with insufficient bandwidth for business-critical applications. Abundant data that swell to use any available bandwidth, network bottlenecks, and bandwidth hungry applications all seem to conspire against network performance. Bandwidth optimization is the need of the hour, and enterprises are constantly faced with the challenge of utilizing it in an optimal manner. This whitepaper discusses how Cyberoam delivers centralized bandwidth control, optimized network performance and increased productivity to IT 0rganizations.

Internal threats account for over 50 % of all attacks. User ignorance and malicious intent of internal users is leading to data leakage, loss of data and creating security breaches. Identity-based security helps organizations defend themselves against insider threats. With information on 'Who is doing What' and user identity-based policy controls, Cyberoam's identity-based security has proven to be critical for network security in the current scenario particularly in DHCP, Wi-Fi and shared machine environments. Cyberoam helps organizations manage how employees use the Internet through user identity-based surfing policies, monitoring and reporting.

Educational institutions have a responsibility to protect their students from unsafe surfing that can lead to viruses, worms, spyware and more. Institutes need to prevent unhealthy Internet activities like pornography, adult chat and illegal P2P surfing. Cyberoam UTM delivers comprehensive Internet security to educational institutions to create not just a secure network, but also a safe academic environment by delivering Firewall, VPN, Anti-Virus and Anti-Spyware, Anti-Spam, Intrusion Prevention System, Content Filtering in addition to Bandwidth Management and Multiple Link Management over a single platform.

Organizations running mission critical applications over the Internet understand the importance of having stable, redundant and fast connections for their business needs. Single ISP links can leave business-critical applications of enterprises vulnerable to link failures, resulting in severe business losses. Cyberoam UTM performs load balancing and gateway failover while delivering effective security over multiple links.

Valley Christian chooses Cyberoam rather than Websense for the mandatory content filtering solution to meet the requirements of CIPA compliance.

How Pascack Valley High School ensured CIPA compliance through Cyberoam's Identity-Based UTM Security. Result: Students carry personal Internet access policies anywhere in the school network

Comprehensive security and safe surfing through Cyberoam UTM's web filtering, anti-spam, anti-virus and instant reporting. They were looking for security in Wi-Fi network with anytime, anywhere connectivity to students. SonicWall failed to block Third Party Proxy and Public VPN applications like Hotspot Shield Anonymous VPN. Cyberoam UTM proved to be a business-friendly Internet security solution backed by prompt technical assistance and on-appliance reporting that lowered cost of ownership.

Symbiosis was looking for security in Wi-Fi network with anytime, anywhere connectivity to students. It needed a one stop security solution for problems like non-academic surfing, virus affected laptops, and bandwidth choking. SIMS tried ISA Server 2000 before deploying Cyberoam but it was totally incapable of handling new age threats like virus, spam, intrusions, indiscriminate surfing and bandwidth abuse. Cyberoam proved to be a single stop solution against all their requirements.

Content filtering through Cyberoam's WebCAT Engine enabled NIT to block unwanted, obnoxious and potentially embarrassing sites. They provided high-speed Internet connectivity to their students. Cyberoam's granular and timely reporting offered quick and effective identification of user behavior patterns on the network. The institute was also impressed with the prompt support provided by Cyberoam. Dr. Patra found the configuration of Cyberoam so easy that a person with little or no product knowledge can configure it quite easily.

Comprehensive security and safe surfing for students through Cyberoam UTM's firewall, web filtering, anti-spam, anti-virus. Student identity revealed through reporting with username.

The Istanbul Ticaret University (ITICU) wanted a security solution to prevent bandwidth abuse and to facilitate bandwidth optimization. Cyberoam's stateful inspection firewall, Intrusion Prevention Solution, Gateway Anti-Virus and Anti-Spam blend together to protect against harmful Internet traffic, illegal downloads and spam, curtailing bandwidth abuse. Cyberoam's Bandwidth Management allows ITICU to prioritize bandwidth usage as per the university's Internet usage policies. Comprehensive on-appliance reports allow it to monitor users' online activities, facilitating compliance with Government's standards.

Almabani, a construction major with widespread business interests, wanted an appliance-based, gateway level security solution to secure and control Internet access. Cyberoam provided the single-box security solution that offered unparallel flexibility to control unproductive surfing and unauthorized downloads by users. Cyberoam's simple, web-based GUI allows remote access management, allowing corporate policies to be applied universally in all locations. It allows bandwidth optimization, load balances between 4 ISP links and also offers WAN link failover feature.

ASGC needed an Internet Security Solution that provided not just comprehensive Internet security at the Head Office and at the remote sites, but also secure connectivity between head office and remote construction sites and branch offices in a DDNS environment. Cyberoam was a perfect match which included not only a Firewall-VPN but also Gateway Anti-Virus, Anti-Spam, Intrusion Prevention and Web Content Filtering to combat blended threats.

Wade Adams wanted an Internet security appliance that would give the best firewall, anti-virus, anti-spam and content filtering solutions at remote locations in the most rugged conditions. Robust appliances and reliable post-sales support were the most critical criteria for their buying decision. Cyberoam proved to a universal remedy for their security requirements.

Cyberoam helped Axiom Telecom control user's surfing behavior. This brought down unbridled surfing and downloads that ate into precious bandwidth that powered business-critical applications. Cyberoam proved to the single box security solution that Axiom Telecom was looking for to mitigate blended threats through firewall, gateway anti-virus, web content filtering, bandwidth and multiple ISP link management. Cyberoam Central Console's centralized management helped them manage the distributed Cyberoam appliances with ease from the central location.

TIMES NOW was suffering from spam and blended threats consisting of spyware and Trojans which would not only eat into their precious bandwidth but would also pose storage crisis. Cyberoam not only protected them from these threats, but also met their critical requirements for work profile-based access policies and in-depth reports related to the channel's confidential information repository.

Cyberoam connects W.J.Meade's 15 remote locations and the central location through robust site-to-site VPN with its VPN accelerator chip providing quick, stable tunnels and VPN Failover delivering continuous secure connectivity. Its unified solution delivers comprehensive security as well as safe surfing while meeting their expectations of an easy-to-configure solution with good technical assistance so that they could tweak it on their own.

Cyberoam helped NDMC contain the issue of unrestricted surfing that lead to loss of productivity through granular content filtering. NDMC wished to replace its legacy firewall because the firewall has limited efficacy in combating blended threats. With built-in security, bandwidth management and multiple link load balancing, Cyberoam delivered a compact, yet comprehensive security solution.

Internet access control and Web filtering was a top priority for the MCIT. The students had to be personally supervised and prevented from surfing potentially harmful and pornographic sites. Cyberoam UTM assures ministry officials and parents of Smart School Network that their students are protected from unsafe surfing. Cyberoam UTM delivers comprehensive security and safe surfing for the students through its firewall, web filtering, anti-spam, anti-virus.

Atul Ltd was concerned with issues such as non-work related surfing, which resulted in inadequate bandwidth for critical business applications. Unrestricted surfing was the primary cause of declining productivity and intrusions in the form of blended threats would cripple their network infrastructure. They needed a solution that would give them the flexibility to configure WAN, LAN, DMZ and VPN zones as per their requirements. They were looking for a comprehensive security solution which would include Web Filtering, Bandwidth Management, Load balancing and failover, Intrusion Prevention System and On-Appliance Reporting. Cyberoam was the ideal match against all their necessities.

Cyberoam brings down the 80-90% spam that cluttered Electrotherm's mailboxes. Read on to know more about how Cyberoam helped them block web-based proxy through custom IPS signature - a unique feature of Cyberoam.

Cyberoam provided an ideal, one-box solution for GACL total connectivity, productivity and security needs by providing security against blended threats, delivering web content filtering, gateway anti-virus and anti-spam solutions.

Mazista Tiles wanted a virus and spam-free, safe e-mailing environment with complete security for the network and control over surfing activites. Cyberoam not only protected them from these threats, but its identity based policies and reporting also helps them to keep a direct track and control over the end user's online activities. Cyberoam was a neat and compact package of the solutions that they needed.

Cyberoam facilitated Siyaram's production and corporate infrastructure in providing round-the-clock connectivity to the six main locations and other remote offices by keeping the organizations Internet link live. Cyberoam was integrated with Siyaram's Active Directory Service (ADS) for user authentication. So now based on the identity, the organization is able to develop individual and group security strategies for content filtering to provide regulated Internet access. Cyberoam's Identity based policies and reporting also helps him to keep a direct track and control over the end user's online activities. Cyberoam also helped them neutralize virus and malware threats, manage various levels of access using identity and link bandwidth management using identity-based services.

Form group wanted to control the nonproductive surfing and downloads of the employees. Anti-virus and anti-spam solution was also needed to block attacks originating through Internet. The organisation was looking for a single solution that would not only check unproductive surfing and augment productivity but also provide secure remote access through VPN over Internet. Cyberoam was the ideal match for all their needs.

When Baccarat was looking for a range of security and productivity tools to secure and control Internet access, Cyberoam proved to be the single box security solution that mitigated blended threats through firewall, gateway anti-virus, Anti-spam, intrusion prevention, web content filtering, bandwidth and multiple ISP link management in addition to dashboards alerts, mail alerts and reports on Internet use, threats and attacks.

Mudra, a leading advertising agency deploys Cyberoam for network security, secure remote access, business continuity through multiple ISP link management in addition to content filtering to regulate site access - a touchy subject at best in a creative agency.

YWAM wanted a single-box solution with a powerful firewall to secure their perimeter, a gateway Anti-Virus, Anti-Spam and a Web Filtering solution. Being a missionary organization, YWAM it to be a simple, low-cost solution. Cyberoam's identity-based firewall gave unmatched flexibility in setting firewall rules for access control to network resources. Coupled with Intrusion Prevention System, it blocked intrusion attempts within the network. Cyberoam's on-appliance reporting, including traffic discovery report, helped YWAM immensely to know users' network activities in detail.

Paras Pharma wanted a flexible, single-box solution for their network security problems like high spam count, unrestricted surfing and downloads inviting virus and malware, bandwidth abuse and allocation, and more. Cyberoam's identity-based content filtering solution allowed it to create user identity-based policies based on work profiles, drastically reducing harmful downloads into the network. The Gateway Anti-Virus and Anti-Spam eliminated bad traffic at the network perimeter, protecting against zero-day attacks. Cyberoam's IPS helped it detect, block or drop unauthorized application at the perimeter itself.

International Typesetting and Composition wanted a virus and spam-free, safe e-mailing environment with complete security for the network and control over surfing and bandwidth management. Cyberoam was a neat and compact package of the solutions that they needed.

Unprotected and unrestricted Internet browsing left gaping security holes in Hero Honda, leaving the organization vulnerable to malware, malicious tracking cookies, spyware and keyloggers. Hero Honda wanted comprehensive security for the network and control over surfing and bandwidth management. Cyberoam proved to a single stop solution for all their needs.

Max Healthcare was looking for a comprehensive security solution that could blend seamlessly into their existing network. They needed a solution that would provide identity based security to control the end-user and would not translate to unnecessary capital and operating expenditure. The Telemedicine section cannot afford down-time as it captures medical data through data and images from state-of-the-art hospitals and send it to the remotest areas. Cyberoam proved to the single box security solution that Max HealthCare was looking for to mitigate blended threats through gateway anti-virus, gateway anti-spam and web content filtering. Cyberoam has been placed in High Availability (HA) mode in the corporate office providing secure, continuous access to business-critical applications, information, and services. Cyberoam's multi-link management load balances the traffic between the two ISP links and also provides a failover option.

Depending heavily on the Internet for their administrative and research requirements, The Royal Hospital for Neuro-disability required a solution that would securely connect them to the internet and maximise productivity with minimum complexity and maximum Return-On-Investment. Cyberoam UTM meets the requirement while providing the added value of on-appliance reporting with user identity, meeting the requirements of the healthcare organization.

Imperial Bank was looking for content security which included intrusion prevention system, gateway anti-virus and anti-spam, and web content filtering solution. They wanted a secure way to connect back office operations at the Head Office. Cyberoam helped them secure their core banking infrastructure against Internet-based blended threats.

SGVF needed a single-box security solution to protect their network. ASA and FortiGate both failed to deliver. Cyberoam proved to be the single-box solution that solved SGVF's security requirement against virus, malware, giving them uncompromising security at wire-speed performance. Further, SGVF's application servers and database servers deployed in the DMZ are secured by Cyberoam's intrusion prevention which also protects them against any internal or external DoS attacks.

Cal Insurance & Associates, INC., USA faced major issue of unrestricted surfing that lead to loss of productivity. Bandwidth Management and load balancing were significant too. The organization needed gateway anti-virus and anti-spyware solutions in addition to protection for surfing and mailing activities. Cyberoam UTM proved to be a business-friendly Internet security solution backed by prompt technical assistance.

Cyberoam provided a strong anti-virus and anti-spam solution to mitigate viruses and spam in Space2Host. While blocking harmful and unwanted content, it remained flexible enough to give no false positives. It thus proved to be a perfect balance of performance, robustness, stability, technical assistance and cost-effectiveness.

Whereas ISA Proxy Server proved ineffectual in combating blended threats, Cyberoam provided an ideal, one-box solution for ARABASCO's total connectivity, productivity and security needs by providing security against blended threats, delivering load balancing and gateway failover between its two ISP links and bandwidth management.

When Microsoft ISA 2004 Server failed to control employee's unproductive surfing, malware or spam, CDO-Foodsphere turned to Cyberoam UTM to deliver comprehensive security and safe surfing for employees

Cyberoam helped BSNL contain the issue of unrestricted surfing that lead to loss of productivity through granular content filtering while tracking end-user activity. With built-in security, bandwidth management and multiple link load balancing, Cyberoam delivered a compact, yet comprehensive security solution.

When Ideal Shopping Direct found itself turning off most of the security features to reduce CPU utilization in its earlier UTM solution, it deployed Cyberoam. Less than optimal content filtering, inaccessible reporting were just some of the problems. Download the case study to find out how Cyberoam delivered continuous and dependable security through High Availability to Ideal Shopping.

Cyberoam, the Integrated Security Appliance, assists CIPA compliance for schools and libraries, allowing them to enforce an Internet safety policy that blocks and filters Internet access in accordance with CIPA requirements. Thus, it helps protect students while ensuring that educational institutions qualify for federal E-Rate funding.

Healthcare organizations require identity-enabled access controls on the basis of user work profiles to ensure higher levels of data security while still maintaining business flexibility. Cyberoam UTM+ security solutions allow enterprises to create identity-enabled policy rules that grant network access to a user based on his or her work profile.