Cybereason, an XDR company, released features in Cybereason NGAV (next-generation antivirus) that redefine endpoint protection by providing nine prevention layers that detect and block advanced attacker techniques and mutated malware strains designed to circumvent AV and NGAV tools.
“Adding two new layers to Cybereason NGAV is enabling Cybereason to redefine the cybersecurity prevention market and empower security practitioners to defend forward by proactively ending attacks earlier in the kill chain,” said Lior Div, Cybereason CEO and co-founder. “Earlier this year, Cybereason achieved the highest scores in the history of the four MITRE ATT&CK evaluations by preventing each of the nine different attack sequences against sophisticated threat actors such as Sandworm and Wizard Spider.”
The Variant Payload Prevention feature defeats novel, polymorphic and re-packed malware variants associated with advanced attacker tooling like Cobalt-Strike and Emotet, while the Behavioral Execution Prevention feature detects and blocks attack techniques that abuse legitimate operating system tools.
Each layer of Cybereason NGAV protection is purpose-built to prevent ransomware and other malware infections in unique ways to assure sophisticated attacker tools do not slip by an organization’s defenses:
- Variant Payload Prevention – Blocks novel and mutated malware and ransomware payloads
- Behavioral Execution Prevention – Prevents abuse of legitimate services
- Predictive Ransomware Protection – Prevents file encryption by ransomware and restores encrypted files
- Fileless Attack Prevention – Blocks in-memory command line and script-based attacks
- Exploit Prevention – Prevents exploitation of Windows vulnerabilities
- AI-Powered Anti-Malware – Blocks novel and mutated malware variants
- Anti-Malware – Blocks known and commoditized malware variants
- Endpoint Controls – Blocks unauthorized device and network connections and ensures full disk encryption
- Behavioral Document Prevention – Blocks malicious macros
