Artificial Intelligence. PHOTO: Cybercrime Magazine.

Rethinking Ransomware Defense With AI

Using a self-teaching artificial intelligence algorithm

Gil Friedrich

New York City, N.Y. – Nov. 29, 2021

Everyone is worried about ransomware and malware these days. Not a day goes by, seemingly, without news of an attack. It can be your local school district. It can be a multinational corporation. No one, seemingly, is immune.

This rapid uptick in ransomware has caused governments worldwide to rethink their strategy in preventing attacks and prosecuting those responsible. For your enterprise, though, action needs to be taken now.

According to the Verizon Data Breach Investigation Report (DBIR), 20 percent of malware attacks are launched via email attachments. In addition, email links, according to the report, are responsible for 40 percent of attacks.

Of those malicious emails, according to Check Point, more than 70 percent of malicious email attachments or links were sent via PDF or through Microsoft Office.

There is no single tool that can detect all malware. With that in mind, it’s essential to use multiple tools and implement a multilayer strategy to detect zero-day threats. Additionally, it’s critical that end-users benefit from a self-teaching AI-powered algorithm that can dynamically detect malicious behavior and quarantine dangerous files.

Cybercrime TV: Gil Friedrich, Founder & CEO at Avanan

Protecting Office 365 inboxes from phishing attacks

It starts with anti-phishing protection. Analyzing emails with a powerful AI algorithm not only limits exposure to malware but also reduces dwell time and lateral movement in the event a breach occurs.

Further, beyond protecting email inboxes, protecting the entire cloud environment is crucial. That means protecting all places where business is done, including SharePoint, OneDrive, Slack and Teams.

To protect your enterprise from these attacks, a full anti-virus suite is needed. That includes sandboxing and anti-virus, as well as Content Disarm & Reconstruction. Files can be major weapons in the phishing and ransomware war. Receiving or forwarding a malicious file can wreak havoc on an organization.

Having a solution that can detect and prevent ransomware embedded in those files is crucial.

CDR works by removing any executable content, making the file safe for the recipient. It protects the end-user from zero-day threats and does so instantly. This real-time process removes zero-day malware and exploits while avoiding the negative business productivity impact that is typically caused by sandbox detonation and quarantine delays.

It inspects the file, cleans and removes any risky active content, remakes the file so that it is threat-free, and does so instantly. It’s a way to know that the file a user is opening, forwarding or sending will be safe.

Beyond that, it’s critical to install real-time reporting. This allows admins to analyze every aspect of a threat and view emulation videos that show what would have happened if the malware breached the network.

Scanning every file and message for malware and ransomware is essential. By scanning your entire cloud environment — every message, every file, every application — for malware, you ensure that pernicious zero-day malware attacks never enter your ecosystem.

Start a Demo to Experience the Power and Simplicity of Avanan

Avanan Archives

Gil Friedrich is co-founder and CEO at Avanan.

About Avanan 

Avanan is a cloud email security platform that pioneered and patented a new approach to prevent sophisticated attacks. We use APIs to scan for phishing, malware, and data leakage in the line of communications traffic. This means we catch threats missed by Microsoft while adding a transparent layer of security for the entire suite and other collaboration tools like Slack.

Avanan catches the advanced attacks that evade default and advanced security tools. Its invisible, multi-layer security enables full-suite protection for cloud collaboration solutions such as Office 365™, G-Suite™, and Slack™.  The platform deploys in one click via API to prevent Business Email Compromise and block phishing, malware, data leakage, account takeover, and shadow IT across the enterprise. Avanan replaces the need for multiple tools to secure the entire cloud collaboration suite, with a patented solution that goes far beyond any other Cloud Email Security Supplement.