Tag Archives: Trend Micro Deep Security

Going for Gold: Trend Micro Brings Cloud Security Message to Microsoft Future Decoded

By Bharat Mistry

Cloud infrastructure services have done much to accelerate digital transformation across the globe. By outsourcing to providers like Microsoft, Google and AWS, organisations can take advantage of huge cost savings and IT efficiencies to become more agile, growth and innovation-centric businesses. Yet security remains a major barrier for many. That’s why Trend Micro continues to work closely with the biggest IaaS providers out there — offering highly integrated cloud protection to accelerate time-to-value for digital transformation.
We’re taking this message to Microsoft’s Future Decoded event in London next week as a Gold Sponsor, so drop by to Stand 27 and catch our presentations at the show if you can.

A barrier to growth
It’s no surprise that cloud security continues to be a concern for organisations. While IaaS offers fantastic benefits, it introduces a new computing model which traditional security tools are ill-equipped to protect. For one thing, there’s often confusion over which part of the cloud stack customers are responsible for protecting. The answer may be more than you think: all the guest operating systems, applications, and data you put in.
Then there are the security gaps that can appear as IT security teams struggle to gain unified control over their multi-cloud and hybrid environments. The dynamic nature of cloud workloads also introduces challenges, demanding that protection be applied as soon as instances are spun up. These issues are multiplied with new container and microservices architectures which typically feature even more moving parts.

It’s no surprise that security is the number one barrier to cloud adoption, cited by 43% of IT professionals surveyed earlier this year.

Automation and consolidation
Trend Micro has been working with providers like Microsoft for years to allay these fears. Our Deep Security platform is Azure certified and we are a Gold application development partner. Deep Security provides robust protection for cloud applications and data including container environments, through a comprehensive range of capabilities. These include anti-malware, IDS, integrity monitoring, behavioural analysis, and machine learning.

A single agent covers all physical, virtual and cloud environments, simplifying management and eliminating blind spots. Most importantly, protection is automated, with policies pushed out to each new Azure instance as soon as it is spun up — providing security that scales.

At Future Decoded, our cloud security architect, Ian Heritage will be taking to the stage to share his vision of cyber defence for the cloud-first enterprise. Too many organisations still view security as an afterthought, which leads to project delays down the line when problems inevitably occur. He’ll argue that by consolidating onto a single vendor and focusing on security automation from the very start, IT leaders can actually accelerate digital transformation.

If you’re going to the show, be sure to catch his presentation, or come down to Stand 27 to find out more about how Trend Micro can support your Azure projects.

What: Microsoft Future Decoded
Where: ExCel London, E16 1XL
When: 1-2 October, 2019
Cyber Defence for the Cloud-First Enterprise: 2 October: 13.15-13.40, Expo Theatre 2

Helping to drive secure digital transformation with Amazon Web Services

by Bharat Mistry

To call cloud computing transformational is an understatement. All over the globe deployments are enabling firms to go further and faster than they’ve ever gone before, driving agility, cost efficiencies and innovation-fuelled growth. But security and compliance remain key challenges for organisations looking to drive maximum value from their cloud investments. That’s why Trend Micro has partnered closely with the leading public cloud platform providers over the years, to offer a comprehensive set of capabilities to our mutual customers.

On Tuesday September 17 we’ll be joining one of these partners, Amazon Web Services (AWS), at its AWS Transformation Day in London to share our expertise with attendees.

Continue reading

VMworld Europe: Time to Simplify Cloud Complexity Through Unified Security

by Simon Young

Cloud is at the heart of any organisation’s digital transformation efforts today, with new DevOps practices driving innovation. But although these efforts promise faster time-to-market and greater agility, the truth is that with greater adoption comes potentially greater complexity and the danger of cloud siloes. According to the latest IDC stats out this week, 90% of organisations will look to migrate to hybrid and multi-cloud environments over the next six years. In this fracturing world, it’s important to ensure you have unified security which works across all major platforms.

That’s part of the message Trend Micro will be bringing to VMworld Europe next week. Continue reading

Mitigating the Threat of the World’s Top Hacking Tools

By Bharat Mistry

When it comes to cybersecurity, information is power. So we were pleased recently to see GCHQ’s  National Cyber Security Centre (NCSC) release a new document highlighting the five most common publicly available hacking tools. Although far from exhaustive, it will provide some much-needed guidance for security teams on what to look out for and how to maximise detection and protection.

Those operating VMware environments and looking to follow this best practice advice would do well to consider our flagship Deep Security offering. As we’ll be discussing at VMworld Europe next month, the combination of tight integration and full-featured security is a winner for protecting software-defined datacentres and hybrid cloud environments.

The top hacking tools
Perhaps the most telling thing about the NCSC report is that it had to be produced at all. It’s very much a sign of the times: a reminder of how the cybercrime underground has democratised hacking tools for widespread use. According to the report, produced in concert with cybersecurity specialists from all Five Eyes nations, initial compromise is usually achieved via exploitation of software vulnerabilities or poorly configured systems. After that, hackers may use:

Remote Access Trojans (RATs): like JBiFrost which could be used to install backdoors and key loggers, take screen shots, and exfiltrate data.

Web shells: like China Copper — malicious scripts which offer remote administrative capabilities.

Credential stealers: like Mimikatz which steal user log-ins so an actor can move internally through a target network.

Lateral movement frameworks: like PowerShell Empire which allow attackers to move around once inside a network.

C2 obfuscation tools: like HTran which help to disguise the bad guys’ location when compromising a victim.

There’s a long list of recommendations from NCSC for firms looking to better detect and protect themselves from such threats. But among the key pieces of advice are:

Keep systems patched and up-to-date
Use “modern systems and software”
Employ network monitoring and firewalls
Implement network segmentation
Deploy host-based intrusion detection
Whitelist applications
Use AV from a reputable provider

Partnering on security

These recommendations play very much to Trend Micro’s strengths as a security pioneer and a decade-long partner of VMware’s with our flagship datacentre product Deep Security. We offer:

Anti-malware, firewall, log inspection, web reputation, integrity monitoring, and IDS/IPS and Application Control
Comprehensive security controls automatically deployed as each new VM is spun up
Virtual patching to keep apps/servers shielded from emerging threats until a patch becomes available
Support for NSX for hypervisor-based security, enabling micro-segmentation

All of this comes with an architecture designed to optimise performance in virtual environments, and offer enhanced visibility across physical, virtual and hybrid cloud IT from a single console. Trend Micro on VMware realises the NCSC’s vision of “modern” systems and software designed with security in mind.

We’ll be taking this message to VMworld next month, with two speaking slots slated:

Enabling Hybrid Cloud Security for NSX and VMWare Cloud on AWS [SAI1032BES]
Bryan Webster, Principal Architect, Trend Micro
Jeremiah Cornelius, Security Envisioning Architect – Partner Products – VMware Global Technology Alliance, VMware
Wednesday, Nov 07, 3:30 p.m. – 4:30 p.m.

Mind the Gap: Building a closer relationship between Security and DevOps [DEV1031BES]
Bryan Webster, Principal Architect, Trend Micro
Doug Cahill, Group Director and Senior Analyst , Enterprise Strategy Group
Wednesday, Nov 07, 12:30 p.m. – 1:30 p.m.

We look forward to seeing you at the show.

What: VMworld Europe
Where: Barcelona
When: 5-8 November