HEAT Shield - Security Business -Macnica

Security business menu

Security business
HOME

To be elected
cause

Service

Handling Manufacturer

Examples/reports/
Blog/Glossary

Seminar/
video on demand

TOP

Products/Services

product

Specifications/Technical Information

Specifications/Technical Information
- Menlo Security demo video

solution

solution
- [Municipality] Separation of the Internet Utilization of isolation for local governments

User stories

support

- Macnica Support

Seminar content

Document request

inquiry

Event/Seminar

video on demand

Menlo Security

What is HEAT (detection evasive threat)?

What is HEAT (Highly Evasive Adaptive Threat)?

This is a new threat concept advocated by Menlo Security called "detection-evasive threats." It is mainly an attack via e-mail and the web that many companies use for business, and due to its advanced techniques, it can bypass the analysis of URL links, web content, IOC (indicators of attack), etc., so it is difficult for conventional security products. Difficult to detect.

Example of HEAT attack method (partial excerpt)

Avoid threat intelligence (filtering/IOC) detection
Password Zip format avoids analysis by security products
Intrusion into the terminal when browsing the web with JavaScript (code) that is not subject to analysis
Evasion of email security analysis by exploiting SMS and SNS

Typical HEAT Threat: Adversary-in-the-Middle (AiTM)

A typical example of a HEAT attack is an attack that breaks through multi-factor authentication called Adversary-in-the-Middle (AiTM), which is one of the phishing attack methods. AiTM bypasses multi-factor authentication by allowing an attacker to install a proxy server between the user and the website the user wants to visit, and steal authenticated session information. By entering their IDs and passwords without realizing that the phishing site is a legitimate site, there is a risk that their authentication information will be stolen and misused.

An example of a phishing attack technique: Adversary-in-the-Middle (AiTM)

The main target of the theft is not the secret information but the session cookie (certificate of authentication)
- A phishing site acts as a reverse proxy between the user and the legitimate website

What is HEAT Shield?

When a user accesses the web, it reproduces and analyzes the website content in real time, and determines whether it is a threat in real time.
If the site is determined to be a malicious phishing site, it will prevent the leakage of authentication information by automatically implementing policy controls such as prohibiting writing and access to the site.

*More functions will be added in the future.

Anti-phishing attack with HEAT shield

Addressing HEAT with Menlo Security

The new function "HEAT Shield" prevents users from entering their authentication information to phishing sites, and by combining it with Isolation technology, it also prevents intrusion from other advanced external threats that avoid detection.

Addressing HEAT with Menlo Security

Inquiry/Document request

In charge of Macnica Menlo Security

inquiry Document request

TEL：045-476-2010
E-mail：menlo-sales@macnica.co.jp

Mon-Fri 8:45-17:30