SOURCE: Invincea


February 28, 2012 09:03 ET

Invincea Addresses Evolving Spear Phishing Threat for Cyber Attacks With Expansion to Protect Against Weaponized Email Attachments

Expands Invincea's Advanced Threat Protection Platform With Complete Protection Against Malicious URLs or Attachments -- Including Microsoft Office™, .zip, and Disguised .exe File Types; Invincea Threat Data Server Offers Enhanced Correlation With Internal and External Threat Intelligence Sources

FAIRFAX, VA and SAN FRANCISCO, CA--(Marketwire - Feb 28, 2012) - Invincea, Inc., an innovator in advanced malware threat detection, end-user threat protection, and pre-breach forensic analysis, announced today at the RSA 2012 Security Conference the availability of a greatly expanded product suite to address emerging vectors of attacks against users. Building off of its innovative and award-winning approach to breach prevention, which focuses on seamless delivery of untrusted content in secure virtual environments, Invincea now provides its commercial and government clients with the capability to capture and contain the primary attack vehicles used in spear phishing, poisoned search results, and user-initiated infections. As a result, even the most well-crafted phishing attempts using zero-day malware are contained before they can successfully take root in the end-user system, preventing the adversary from infiltrating the network.

End-users continue to be used as the primary incursion point for many of the most damaging attacks seen today. Additionally, as Operation Shady Rat, the Nitro attacks disclosed by McAfee and Symantec, and the recent analysis of Duqu show, attackers have expanded their repertoire of delivery tools to include content such as Microsoft Excel and Word files, as well as .zip and disguised executable files. Extending beyond the initial protections against attacks via web browsing and PDF documents, Invincea's new capabilities include:

  • Expansion of Invincea™ BrowserProtection and Invincea™ DocumentProtection beyond URLs and Adobe PDF files to capture and contain potential threats within any Microsoft Office File, .zip, or executable type file
  • Increasing Invincea's Threat Data Server capability to correlate and share forensic data on captured malicious content with internal and external threat intelligence sources such as Security Information Event Management (SIEM) systems and log management systems including McAfee ePolicy Orchestrator (ePO), ArcSight, Q1 Radar, and Splunk.

Invincea's innovations are part of an emerging class of products that are moving the security industry back from damage assessment and mitigation to a focus on attack prevention. Invincea solutions perform seamless delivery of untrusted content in secure virtual environments, a system which enables signature-free malware discovery, without risking system infection, while providing pre-breach forensic analysis feeds to inform and improve other defense mechanisms. This is accomplished via the innovative use of virtualization to create protective bubbles around browsers and document editors. By insulating them in a fully virtualized environment that is completely separate from the desktop operating system, Invincea has created a desktop "airlock" that seals the potential attack vector off from infecting the desktop system and the enterprise network. Using behavior-based detection, Invincea is able to detect all malicious activity -- including zero-day exploits -- within this contained environment. At the point of detection, Invincea automatically captures detailed forensics on malicious activity from the virtual machine and feeds that actionable "intel" to the Invincea Threat Data Server for correlation and further analysis. The content within the infected bubble is automatically and immediately destroyed and replaced with a clean environment.

"At Invincea, our vision is to provide a completely seamless set of security controls that both protect the enterprise network from the user and protect the user from becoming the unwitting accomplice to a cyber-breach," said Anup Ghosh, Founder and CEO of Invincea. "Spear phishing is the number one attack pathway used by adversaries to breach corporate and government networks. With the expansion of the Invincea solution to address .zip, .exe and the standard business document suite, Invincea becomes the most robust spear phishing and user protection suite the industry has ever seen. We make prevention possible again by stopping malware dead in its tracks without the need for signatures and change the paradigm from one of post-facto forensic analysis to one of pre-breach forensic intelligence."

About Invincea
Invincea is the premier innovator in advanced malware threat detection, end-user threat protection, and pre-breach forensic analysis. Invincea is the only solution on the market that provides enterprise networks with coverage against the largest attack surface for cyber-breach -- attacks aimed at users in the form of spear phishing, poisoned search results, and user-initiated infections.

The company's solutions offer a unique ability to protect networks against all types of threats directed at end-users, including zero-days, by seamlessly moving applications that render untrusted content into controlled, secure virtual environments that automatically detect and terminate threats in real time. Invincea's platform seamlessly moves the browser, PDF reader, Microsoft Office suite, .zip, and .exe file types from the native operating system into fully virtualized and secure environments without changing the user experience. The company, which was founded by Anup Ghosh to address the rapidly increasing security threat from nation states, cyber-crime, and rogue actors, has commercialized technology originally built under DARPA funding. The company is venture capital-backed and based in Fairfax, VA. For more information, visit

Contact Information