Imunify360 Blog - New! Proactive Defense, now in Imunify360 beta, prevents hackers from getting into your servers.
Imunify360 and Imunify Sensor Blog

New! Proactive Defense, now in Imunify360 beta, prevents hackers from getting into your servers.

New! Proactive Defense, now in Imunify360 beta, prevents hackers from getting into your servers.

In the past decade, malware has become considerably more sophisticated, but the industry is still focused on developing solutions for cleaning and removing malware. Proactive Defense, the new feature of Imunify360 now in beta, adds a different approach to protect your Linux web servers - it actually prevents malware from running in the first place.

Here is how Proactive Defense in Imunify360 works:

Proactive Defense continuously analyses running scripts, identifies dangerous behaviors in Linux web servers in real time, then blocks potentially malicious executions automatically and with zero latency. It protects websites running PHP, the most common programming language, against zero-day attacks. 

Imunify360 Proactive Defense Security

 

Proactive Defense utilizes advanced heuristics to detect potentially dangerous execution sequences and automatically stops those sequences before they harm your servers. However, Imunify360 allows administrators to tailor the action according to their preferences - in log mode, it records events for the review; in kill mode, it kills the script execution identified as dangerous.

Proactive Defense uses a unique method of identifying security risks - it analyzes what scripts do rather than what is actually in the code or file. It prevents malware, both new and old, from actually running on your servers. Proactive Defense stops even the malware that scanners are unable to detect.

Click here on more information about Proactive Defense or here on how to enable it.

Imunify360 blocks attacks through a combination of technologies: signature matching, real-time behavior analysis for blocking malware, and herd immunity powered by insights collected from servers all over the world. While Imunify360’s anti-malware feature, Malware Scanner, detects known attacks, Proactive Defense takes protection to a whole new level by defending against new attacks. It now delivers the optimal anti-malware solution.

Now is the time for Proactive Defense, and it is a part of our complete Imunify360 solution. To learn more about it, or to try free, visit this page.

Here is how to enable the Imunify360 BETA with Proactive Defense.


Don't miss our live webinar on Thursday, July 12 at 12 pm EDT/9 am PDT

See how Proactive Defense works and why it is so effective at stopping malware.

Register here (if you cannot attend, register anyway and we'll send you the recording).


 

Spectre v.2 patches are available in TEST feed
Alt-Python27 updated
 

Comments 2

Guest - Christos Panagiotakis on Wednesday, 27 June 2018 15:44

We can "compare" this with Atomicorp's ASL their WAF rules and their ClamAV signatures? Does it replaces it? Can they run side by side or there is no need?
For example I am running a setup with ASL and CXS. I utilize their WAF rules and their ClamAV signatures for malware/viruses/spam. Does imunify replace this solution completely on all aspects (spam attachments scanning, malware, mod_sec, scanning on demand)?

We can "compare" this with Atomicorp's ASL their WAF rules and their ClamAV signatures? Does it replaces it? Can they run side by side or there is no need? For example I am running a setup with ASL and CXS. I utilize their WAF rules and their ClamAV signatures for malware/viruses/spam. Does imunify replace this solution completely on all aspects (spam attachments scanning, malware, mod_sec, scanning on demand)?
Igor Seletskiy on Wednesday, 27 June 2018 16:33

No, you cannot. Not at all.
ASL WAF is somewhat similar to Imunify360 firewall, we have similar WAF ruleset, but we also have very strong ML that blocks bots that attack a lot of servers - even for 0-day vulnerabilities. ASL doesn't have that. Anyway -- this is just firewall/WAF part. It is only for check requests. Everyone has it... it stops some.

ClamAV is similar to our malware scanner, but our scanner detects significantly more known vulnerabilities. Once again -- this is not what proactive defense does. This is once you are exploited.

Proactive defense sits right in PHP binary and makes sure that PHP doesn't do something it shouldn't do. As the result, things that passed through WAF --> would get caught. So, if you have old software/vulnerable software --> it will stop attacks against it.

Or if something is not caught by malware scanner, that sits on the server, and is doing something nasty --> proactive defense will stop it from doing anything.

It is the only solution on the market that can stop 0-day attacks.

No, you cannot. Not at all. ASL WAF is somewhat similar to Imunify360 firewall, we have similar WAF ruleset, but we also have very strong ML that blocks bots that attack a lot of servers - even for 0-day vulnerabilities. ASL doesn't have that. Anyway -- this is just firewall/WAF part. It is only for check requests. Everyone has it... it stops some. ClamAV is similar to our malware scanner, but our scanner detects significantly more known vulnerabilities. Once again -- this is not what proactive defense does. This is once you are exploited. Proactive defense sits right in PHP binary and makes sure that PHP doesn't do something it shouldn't do. As the result, things that passed through WAF --> would get caught. So, if you have old software/vulnerable software --> it will stop attacks against it. Or if something is not caught by malware scanner, that sits on the server, and is doing something nasty --> proactive defense will stop it from doing anything. It is the only solution on the market that can stop 0-day attacks.
Already Registered? Login Here
Guest
Wednesday, 23 October 2019

Captcha Image