The document discusses internet security threats and solutions from M86 Security. It notes that malware is increasingly being hosted on legitimate websites through hacking or by embedding malicious code. It also discusses "blended threats" where attackers send links to malware-infected legitimate websites that can bypass traditional security filters. The document outlines M86 Security's multi-tiered threat protection approach using URL filtering, signatures, and real-time code analysis. It provides an overview of M86 Security products including appliances, software, and cloud-based options for web security, email security, and compliance needs.

1. Internet Security: Malware Update Jose Bodni Director, Latin America & Caribbean Jose.Bodni@M86Security.com

3. Simpler Detection Through:

4. Domain Restriction

5. Reputation

6. Some Change in Viruses

7. Up for Days

8. Legitimate Site Passes by Most Web Filters

9. Polymorphic Viruses Change Many Times Per Day

10. “New” Malware Never Used Again**Source: Virus Arms Race, The Register, August 2009

11. Anatomy of a Blended Threat Attack 2) Attacker sends emails with embedded links to malicious Web sites. 1) Attacker hacks legitimate Web sites and injects malware. 5) Traditional Web filters are bypassed as user is directed to legitimate Web site. 3) Email bypasses traditional spam and anti-virus systems. 6) User’s computer gets infected with drive-by download and becomes a bot. 4) User receives email and clicks on link to malware-infected site.

12. Customer Challenge for 2011: Web-based Threats Web-based Threats Web malware from legitimate sites* 92% 1000% 84% Increase in Web malware over 2010 Of new threats come from the Web *Source: Websense

13. Customer Challenge for 2011: Web-based Threats Web 2.0 Landscape 40-50% Current AV catch rates* Collaboration Tools Social Networking Enterprise SaaS WEB 2.0 Social Media Media Sharing Client Applications Interactive Sharing Mass Comms 52% 10 billion Malware dead within 24 hours** World-wide blended threat emails per day *Source: M86 SecurityLabs **Source: Panda Labs

14. Why Real-time Detection is so Important M86 Security Labs Report Test: >30,000 live malware URLs Traditional Security: Stool Strategy URL Filtering 3.8% effective Three Major AV Vendors Combined 39% effective Real-time Code Analysis Six-in-10 threats require real-time code analysis to be blocked Leg 3 Leg 2 Leg 1 Anti-virus Signatures 100% effective Real-time Detection (Code Analysis) URL Filtering

15. M86 SWG: Multi-tiered Threat Protection MALWARE DETECTED Where it comes from?Previously discovered malware websites URL FILTERING 3.8% Effective 39% Effective* SIGNATURE-BASED ANTI-VIRUS What it looks like?Identified malware signatures What is its intentions? Dynamically analyzes unknown codes for malware-related behaviors 100% Effective in detecting known threats and unknown obfuscated malware codes REAL-TIME CODE ANALYSIS Source: M86 Security Labs Report (test based on >30,000 live malware URLs *Three major AV vendors combined

16. M86 SWG: Multi-tiered Threat Protection What is its intentions? What it looks like? Dynamically analyzes unknown codes for malware-related behaviors Where is it? Identified malware signatures Previously discovered malware websites Block /Allow /Repair Block / Allow Block / Allow Suspect webpage Repaired/Re-constructed web page

17. M86 Product Overview

18. Appliances Compliance Strong FoundationCurrent M86 Security Products Products Deployment Options Web Security Messaging Security Reporting Compliance Anti-virus Malware Detection Application Control Anti-virus Malware Detection Outbound Security Encryption Data Loss Prevention Archiving Granular Reporting Real-time Monitoring Software Cloud Service (SaaS)

19. M86 Secure Web Gateway Unified Web Security Award-winning, best-in-breed, multi-layered, on-site and cloud-based Web security. Patented, active real-time code analysis of inbound and outbound communication, keeping malware out of networks and laptops, while retaining sensitive/confidential data.

21. Real-time Code Analysis

22. Anti-virus

23. Anti-spyware

24. SSL Inspection

25. Dynamic Web Repair

26. Data Leakage Prevention

27. Productivity & Web 2.0 Control

28. URL Filtering

29. Application Control

30. Content Acceleration

31. Web CachingTotal cost of ownership is reduced by powerful central management with global reach that includes intuitive task-based policy management and drill-down reporting. Integration with existing IT infrastructure is easy for all implementation options.

35. Manage Cloud Scanners from Corporation Net Policy Server

36. No Hardware in Branch OfficesMobile users are protected no matter where they are Branch Offices Main Data Center No hardware in branch offices

37. M86 WebMarshal Software Secure Web Gateway Software-based Secure Web Gateway solution deployed between an organization and the Internet which provides easy-to-use, scalable and cost- effective real-time content inspection of all incoming and outgoing Web traffic.

39. Real-time Lexical Analysis

40. Anti-virus and Anti-spyware

42. Controls Access and Acceptable Use Policy

43. Controls Streaming Media & IM

44. Web Proxy Caching & Scheduled Quotas

45. HTTPS Inspection

46. Exceeds Compliance NeedsA robust multi-server array with a low total cost of ownership. The flexible and intuitive policy enforcement provides customizable protection from Web threats while allowing detailed control of user Web browsing behaviors.

47. M86 Email Security and Management M86 MailMarshal Exchange Internal email security for Microsoft Exchange M86 MailMarshal Secure Email Server Email Gateway Encryption M86 MailMarshalSendSecure Business-to-consumer Email Encryption M86 Secure Messaging Service Cloud-based Email Security M86 MailMarshal SMTPEmail Gateway Security M86 MailMarshal Service Provider Edition Managed Email Security Service

48. M86 MailMarshal SMTP Email Gateway Security and Control A versatile, powerful and scalable email security system that is compatible with any network environment. Integrating email threat protection, anti-spam, content analysis, compliance enforcement, DLP and reporting into a single, flexible, easy-to-manage solution.

50. Anti-spam

51. Anti-virus

52. Anti-spyware

53. Anti-phishing

54. Data Leakage Prevention

55. Secure information

56. Content Control

57. Offensive language

58. Pornographic images

59. Protect bandwidth

60. Compliance

61. Industry standards

62. Regulatory requirements

63. EncryptionComplete control over inbound and outbound email in any environment, resulting in reduced exposure to risk and full email content management. An easy-to-use console, flexible policy framework and reporting tools ensure a high return on investment.

64. M86 MailMarshal Secure Email Server Email Encryption Gateway Policy-based secure email solution that provides encryption, digital signing and deep content inspection of inbound and outbound email messages.

67. Automatic Certificate Harvesting

68. Standalone Installation Operates With Any Email Gateway

69. Certificate Synchronization via LDAPCentralized control of encrypted communication between your company and your business partners. Consistent application of policies ensure that sensitive emails never insecurely leave your organization. Automatic harvesting and synchronization of certificates make the product extremely easy to use and maintain.

70. M86 MailMarshal Exchange Internal Email Filtering Manages, monitors and controls office email content that travels within a company to ensure a safe, productive working environment and compliance with Acceptable Use Policies.

71. M86 Security Overview Jose Bodni Director, Latin America & Caribbean

73. Over 24,000 global customers with more than 17 million users

74. Products:

75. Award-winning M86 Secure Web Gateway

76. M86 Secure Web Service Hybrid, the industry’sfirst hybrid Web security service

77. M86 Web Filter and Reporting Suite

78. M86 MailMarshal for SMTP, Exchange and Secure Messaging Service

79. M86 Security Reporter

80. More than 400 employees worldwideReal-time Security for the Borderless Network

81. M86: Recent Milestones Only company with real-time malware detection for both Web and email World’s largest provider of Web Security Appliances* Gartner Visionary in both Web and email Security Magic Quadrants First to market with solution for blended threat attacks First to market with hybrid Web Security Service *IDC Aug 209

82. Worldwide Customers Professional Services Government Education Healthcare Manufacturing Banking/Insurance Other

83. Awards and Product Reviews Secure Web Gateway Visionary- M86 Secure Web Gateway Email Visionary- M86 MailMarshal SMTP Technology Audit: SWG Everything Channel Five-Star Rating for Channel Partner Program Gold Winner MailMarshal SMTP 10 Most Interesting Product at RSA Vital Web Security Suite Secure Web Gateway Product Innovations Web Security Winner SWG Editor’s Choice Vital Security =Vital Protection Excellence in Web Security Anti-Malware Gateways Vital Web Security Suite

84. Questions?