Malvertising is the use of online advertising channels to infiltrate malware into the computers of unsuspecting users by embedding malicious code within legitimate advertisements on trusted websites. By simply visiting a site, users can get infected via "drive-by download". There is no visible indication that the trusted site is compromised. As most advertising on trusted sites comes from a variety of ad networks - different visitors will see different ads from different places, not all of which will be malicious - Malvertising is particularly hard to detect.
Malvertising is a growing problem. Research shows that billions of malicious advertisements are being served each year. Malvertising is especially virulent for two reasons. Firstly, leveraging the online ad network gives attackers the ability to target specific groups; attackers can ensure infection across a designated demographic or targeted set of audiences. Secondly, because there are so many players in the supply chain through which a given advertisement passes, attackers can more easily avoid detection.
As more and more business-related sites carry ads, and attackers increasingly leverage the online ads ecosystem to target users, the security implications of malvertising are significant for publishers and Enterprises alike. Proofpoint takes a new approach to addressing the threat of malicious ads in two ways.
Please click here for additional information.
Proofpoint Inc. (NASDAQ:PFPT) is a leading security-as-a-service provider that focuses on cloud-based solutions for threat protection, compliance, archiving & governance, and secure communications. Organizations around the world depend on Proofpoint's expertise, patented technologies and on-demand delivery system to protect against phishing, malware and spam, safeguard privacy, encrypt sensitive information, and archive and govern messages and critical enterprise information. More information is available at www.proofpoint.com.
Proofpoint acquired Armorize Technologies, Inc in September of 2013, integrating Armorize's leading malware detection technologies into the Proofpoint Targeted Attack Protection (TAP) platform which defends organizations against compromise involving Web-based malware delivered via highly targeted methods and typically executed by actors representing Advanced Persistent Threats.
SUNNYVALE, Calif. – August 9, 2013 –
Proofpoint, Inc., (NASDAQ: PFPT), a leading security-as-a-service provider, today announced that it has agreed to acquire Armorize Technologies, Inc., a company that develops and markets leading cloud-based (SaaS) anti-malware products. The acquisition will add real-time dynamic detection technology for next-generation threats and malware as well as a leading malware research team to Proofpoint's already robust capabilities. This will further augment and accelerate development of Proofpoint's Targeted Attack Protection? product. Under the terms of the agreement, Proofpoint will pay approximately $25.0 million in cash. The acquisition has been approved by the Proofpoint Board of Directors and by the requisite Armorize shareholders and is expected to close in the third quarter of 2013.
"This acquisition solidifies Proofpoint’s leading position in cloud-based next-generation threat detection technology and malware research expertise," said Proofpoint CEO Gary Steele. "By adding Armorize's capabilities in Advanced Persistent Threat (APT) detection and remediation and a team of distinguished technologists and researchers, we will continue to provide a unique approach to advanced threat protection to our expanding customer base – as well as strengthen our presence in the APAC region." | View Proofpoint press release | View Armorize blog post...
View press release...
Armorize Press Release...
HackAlert’s Detection Mechanisms
HackAlert incorporates multiple layers of technologies that interact closely with each other in analyzing an attack; these modules include a) HackAlert Sandbox Analyzer, b) HackAlert Static Analyzer based on the Armorize Attack Definition Language (AADL), c) HackAlert Integrated Blacklist and Reputation Analyzer, d) HackAlert Heuristics Analyzer, e) HackAlert Anomaly Profiler, and f) integration with other anti-virus engines.
HackAlert’s Supported Targets
HackAlert supports multiple infection vectors including a) Web pages, b) URLs, c) online ads (malvertising), d) email content, e) email attachments and document files, and f) other file types. The HackAlert Developers’s API is a comprehensive and easy to use API that enables easy integration of HackAlert with existing cloud-based services, web filtering gateways, email servers, etc. | more...
Armorize COO Matt Huang talks about mass web malware injections on KTVU news
August 13th, 2011, San Francisco [2m19s]
CodeSecureV5-Bata Release Note San Francisco, CA - Dec 18th, 2012 Armorize has released the new generation of CodeSecure V5-Bata on December 14, 2012, and will release the GA version in 2013.
For our current user base, Armorize has a special program for CodeSecure...
Armorize Partners with Symantec to Deliver Anti-Malvertising Solution at Online Trust Alliance Forum 2011 Washington D.C. - Oct 17th, 2011 Armorize partners with Symantec to provide its powerful anti-malvertising technology to Symantec’s new solution, AdVantage, to help customers protect themselves from the growing threat of malicious a...
Armorize Technologies, Inc. Showcases the Latest Release of CodeSecure, Its Source Code Analysis Solution, at RSA Conference 2011 San Francisco, CA - Feb 14th, 2011 Armorize Launches an Upgraded Version of Its Source Code Analysis Solution, CodeSecure at RSA Conference 2011 Garnering Key Advancements in Performance, Productivity and User Experience
Armorize & GlobalSign Launch HackAlert Web Malware Monitoring Solution San Francisco, CA - Feb 14th, 2011 HackAlert monitors GlobalSign customer Websites for malicious code injections that install unwanted malicious software on Website visitor PCs.
Armorize Technologies, the world’s leading Anti-Web M...
Armorize Technologies Launches New Solution Focused on Anti-Malvertising at RSA Conference 2011 San Francisco, CA - Feb 11th, 2011 HackAlert SafeImpression™, Armorize Technologies' New Anti-Malvertising Solution Built to Aid the Online Ad Industry in Combating the Rising Threat of Malicious Online Advertising, to Be Showcased at...
HackAlert Wins Best Web Tool 2012 Award
Asia 100 Winner
Twice Best Papers Finalist
Dow Jones Venture Wire
The Venture Forum
Red Herring Global