Unmask Hidden Threats Before They Strike
Sophisticated threats that evade traditional signature-based anti-virus defences are on the increase and have led to organisations losing millions of pounds, personal information, and to permanent reputation damage. WatchGuard APT Blocker stops these fast changing and persistent threats by using a next-generation cloud-based sandbox which simulates physical hardware to expose malware that evades signature-based network security defences.
- APT Blocker provides you with advanced protection against zero-day threats, ransomware, and evolving malware
- APT Blocker thoroughly analyses a wide range of executable files and documents, including office file types
- There is seamless integration with WatchGuard Cloud Visibility / Dimension which gives you complete visibility
- Deploys in seconds
- APT Blocker has an instant threat response with automated alerts
- Average analysis time of less than two minutes
Combat Evolving Threats
It’s impossible to provide guarantees of 100% protection against ever evolving and complex threats. WatchGuard provides a layered approach to security as it allows you to continually stay ahead of the threat landscape with their powerful security services. Signature-based defences are still a critical gateway defence against known threats. APT Blocker is supported by Lastline technology and it provides last-mile protection against unknown threats that make it past the first security layers. Lastline was founded by world-renowned security researchers who have been analysing advanced cyber threats for more than ten years, and who were the creators of Anubus and Wepawet services.
Prevent, Detect, and Resolve
WatchGuard APT Blocker detects and stops advanced persistent threats by focusing on behavioural analysis to determine whether a file is malicious. Any suspicious files are sent to the sandbox where the code is emulated, executed and analysed. If malicious the file is destroyed and prevented from reaching your network.
Full System Emulation Simulates Physical Hardware
APT Blocker’s full system emulation provides the most comprehensive level of protection against advanced threats by simulating physical hardware, including CPU and memory.
Easy to Use
WatchGuard APT Blocker has controls that are easy to access and to use which enables you to quarantine, block, drop or allow files. You can also set customised notifications for when advanced threats, ransomware and zero-day attacks are detected.
WatchGuard Cloud Visibility / Dimension gives you full visibility into the advanced threats attempting to attack your network, including the sender source, the threat ID’s, the protocols used, and the type of activity that would have resulted had APT Blocker had not acted.
How Does APT Blocker Work?
WatchGuard APT Blocker works in tandem with WatchGuard Gateway AntiVirus* to provide a best-in-class solution that detects and prevents advanced threats. If the file passes through the Gateway AntiVirus scan, a hash of the file is sent to the APT Blocker’s cloud-based sandbox to assess whether it is a known threat. If the threat is not recognised APT Blocker asks the Firebox to send the full file which it then executes in a simulated physical environment for comprehensive threat analysis. Network Administrators are then alerted with a threat rating if the file is suspicious.
* APT Blocker requires an active WatchGuard Gateway AntiVirus subscription
The Claranet Cyber Security Difference
When it comes to maximising WatchGuard products and integrating robust and secure solutions, Claranet Cyber Security has the edge. Designed to meet the needs of specific sectors, types of organisations, and compliance standards, our tailored solutions are trusted by leading private and public sector organisations throughout the UK.