Cyvera - Cyber Defense Solutions Ltd.

Cyvera Cyber Defense solution software vulnerability exloitation prevention and zerday exploitation prevention

Do not attempt to identify the unidentifiable. Prevent its cause.

HOME

ABOUT

PRODUCTS

RECENT

RESOURCES

JOBS

CONTACT

Cyber Defense Solutions. HOME

Inevitable nature of Patches updates

Zeroday and the Elusivness of Targeted Attacks

"... An APT is different; it's an attacker who – for whatever reason –wants to attack you. Against this sort of attacker, the absolute level of your security is what’s important. It doesn't matter how secure you are compare to your peers; all that matters is whether you're secured enough to keep him out… APT attackers are more highly motivated. They're likely be better skilled, better funded, and more patient. They're likely to try several different avenues of attack. And they're much more likely to succeed"

Bruce Schneier, internationally renowned security technologist and

author.

No Frame

85% of targeted attacks on organizations' computer-systems are executed remotely, mostly by utilizing exploitation techniques. Sophisticated attacks exploit newly-discovered software vulnerabilities (ZeroDays) or tweak existing ones. Traditional solutions seem to be ineffective in preventing targeted attacks in general, and ZeroDay exploitation attacks in particular. The wrong approach, to identify the unidentifiable, is doomed to fail.

Whether patch management systems are implemented or strict update policy is enforced, it is almost impossible for organizational IT to keep all of its systems up-to-date and patched. The more sensitive the network, the more the patches policy is permissive. It sould be considered a given fact : for good reasons, organizational computers will never be completely patched. Unpatched computers are not protected against Software Vulnerability Exploitation.

"Our largest fear is the zero day attack... It's very, very, very difficult to protect oneself from an attack that you did not know was coming or the vulnerability that you did not know exised".

Sherrill Nicely, the CIA's deputy chief information officer

That is Exactly what Cyvera Solves

See how

ABOUT

About Cyvera

Cyvera Ltd. offers a Cyber-defense solution, designed to prevent sophisticated computer-systems remote-attacks, which are based on software-vulnerabilities exploitation. Cyvera made a breakthrough in preventing exploitations in general, and unknown exploits (ZeroDays) in particular. Compared to last decade's security breakthroughs, Cyvera is expected to become essential layer in Cyber Security billions of dollar market.

Our Approach

Cyvera's scalable solution, is based on new perception of Preventing the Techniques of Exploitation rather than identifying the exploits and their malicious activity. Namely, by shifting the paradigm from Malicious Activity Identification to Exploit Techniques Prevention, the exploitation can be prevented even if unknown (ZeroDays). Requiring almost no computer resources, resulting in no false-positives and effectively preventing exploitation - Cyvera has already proved successful in preventing software-vulnerability-exploitation in various environments. For example, Cyvera's research lab succeeded in preventing several of the most sophisticated ZeroDay attacks, including a few which were recently exposed.

Cyvera's product can be implemented in different environments: whether by protecting few handpicked high-sensitive end-points in the organization, critical infrastructure control stations, or thousands of computers within an enterprise. We expect that by 2015 the product will be common among private computers as well.

Our Team

The Cyvera team's comprehensive familiarity with attacker perspective, as well as national cyber-threat scenarios, enables it to conduct strategic and tactical "preventive security" developments. Our experience in conducting numerous global computer forensic investigationsin order to expose remote attacks, assisted our team in understanding both the operational approach, the strategic analysis and the technical approach in a way that makes our product both focused and efficient.

PRODUCTS

CYVERA PRODUCTS

Cyvera EPC | Client Based Exploitation Prevention

The Cyvera Exploit Prevention Client (EPC) provides a full pre-emptive solution to protect end-points against software vulnerability

exploitation. Proven to prevent software vulnerability exploitation attempts, Cyvera EPC is the only existing solution capable of

preventing exploits in real-time regardless of their "age", complexity or designation. Whether your computer is not fully patched

against vulnerabilities exploitation, or your existing HIPS and security suits are not sufficient against ZeroDay exploitation attacks and mutate

exploits - the Cyvera EPC will prevent any exploitation attempt. By enforcing an array of correlated Exploit Prevention Modules (EPMs) on the

end-point, for the first time the end-point can be protected not only against known exploitation, but against ZeroDay exploitation as well.

Requiring almost no computer resources, resulting in no false-positives and effectively preventing exploitation - Cyvera EPC has already proved successful in preventing software-vulnerability-exploitation, including Zero Day exploitations in most common softwares operating on Microsoft Windows systems, 32-bit and 64-bit architecture. Cyvera EPC provides a user friendly informative interface to learn of prevented exploitation attempts and exploitation flow. It further creates a "real time image" (readable memory dump) of dynamic memory, at the time of prevention, in a way that enable later examination of the attack event.

Cyvera EPE | Scalable Version for Enterprises

Based on the same principles as Cyvera EPC, Cyvera's enterprise solution enables any organization, whether SMB or large enterprises,

to simply manage the deployment of Cyvera solution on all organization end-points. It further enables the IT manager/ CISO

to receive cross-organizational reports on exploitation prevention and interconnectivity with organizational SIEM/SOC. When a report

is received at a centralized control point, it can be taken for more in-depth forensic investigation or correlation research to tie the prevention

to other related events in organization IT. Cyvera EPE's seamless integration, simplicity of deployment and low resource demands makes it

the ultimate solution for organization to prevent Exploitation-based attacks and Zero Day attacks on any Windows-based End-point within

organization.

Cyvera EPIR | Forensics Solution for Incident Response

While Cyvera's real-time solutions assure prevention of exploitation, an already exploited end-point cannot be easily identified as infected by

the existing solutions. By nature, the software vulnerability exploitation event occurred only once, and enabled later persistence hostile activity

on the attacked end-point, regardless of the exploitation itself. Therefore, once exploitation is not prevented, it is normaly extremely

complicated to spot it later on. Cyvera EPIR enables the controlled-execution of any file stored in an organization and real-time detection of

any embedded exploit. Cyvera EPIR can run alonfside the regular activity of organizational IT and does not create an interface.

No Frame

RECENT

Dec 07th 2011

Adobe Reader Zero-day being exploited in the wild, Symantec

Adobe has issued a public advisory regarding a critical vulnerability (CVE-2011-2462) that affects Adobe Reader. This critical vulnerability has recently been seen exploited in the wild in targeted attack emails sent on November 1st and 5th. This attack leverages the zero-day vulnerability in order to infect target computers with Backdoor.Sykipot.

Nov 30th 2011

Into the Darkness: Dissecting Targeted Attacks, Rodrigo Branco of Qualys

Technical analysis of RSA's March 2011 APT attack.

Nov 22th 2011

Four Ways to Invest in Cyber Security, Steve Christ

Defense officials are currently seeking more than $3.2 billion in cyber security funding in 2012 nearly $1 billion more than the Department first reported in February. By 2016, industry analysts believe cyber security spending will grow by 306%, reaching as high as $13 billion.

Nov 09th 2011

About Advanced Persistent Threat (APT), Brouce Schneier

"...An APT is different it's an attacker who -- for whatever reason -- wants to attack you. Against this sort of attacker, the absolute level of your security is what's important. It doesn't matter how secure you are compared to your peers; all that matters is whether you're secure enough to keep him out.

Oct 27th 2011

Chasing APT: Persistence Pays Off, Brain Krebs

“So many firms are stuck in a paradigm of drive-bys, not targeted attacks,” Says Joe Drissel. “There seems to be a real disconnect with what’s really happening on a daily basis. We’re trying to fight an asymmetrical war in a symmetrical way, sort of like we’re British soldiers [in Revolutionary War], all walking in line and they’re picking us off one by one. By the time we turn around and aim, they’re already gone.”

Aug 3rd 2011

Microsoft to hackers: Cash for exploit mitigation inventions, ZDnet

The world’s largest software vendor today announced Blue Hat Prize, an academic challenge aimed at generating new ideas for defensive approaches to support computer security. This year, Microsoft is offering $250,000 in cash and prizes to researchers who design a novel one-time mitigation for memory safety vulnerabilities.

RESOURCES

-> VP R&D

-> Experienced C++ programmer

-> Experienced ASM programmer

-> MATLAB expert

-> Windows kernel programmer

-> Exploit engineer

-> Vulnerabilities researcher

-> Senior QA tester

-> QA tester

We offer great jobs, an excellent company and an even better team.

Please contact jobs_cyvera.com

CONTACT