Umbrella for MSPs: Enterprise Grade Malware Protection & Containment

Umbrella Con!dential

1_Title (1)

UMBRELLA FOR MSPs Enterprise Grade Malware Protection and Containment Dima Kumets MSP Product Manager

#2 #2 � 18-Nov-13 � Umbrella Con!dential

Agenda

!   BACKGROUND

!   CHANGING THREAT LANDSCAPE !   INFORMATION TO PRESENT TO CUSTOMERS

!   CLOUD SECURITY WITH OPENDNS

!   UMBRELLA FOR MSPs PROGRAM

UMBRELLA FOR MSPs: Enterprise-Grade Malware Protection That Lowers Your Costs and Pays For Itself Dima Kumets, MSP Product Manager

1_Light Title Only

#3 � 18-Nov-13 � Umbrella Con!dential

ASIA-PACIFIC

EUROPE, MIDDLE EAST & AFRICA

AMERICAS

COMPANY BACKGROUND

!   50M+ ACTIVE USERS DAILY

!   19 DATA CENTER LOCATIONS

!   ZERO DOWNTIME, SINCE 2006

!   50B+ REQUESTS DAILY

!   160+ COUNTRIES W/USERS

!   ZERO NET NEW LATENCY

GLOBAL SECURITY NETWORK 208.67.220.220 208.67.222.222

1_Light Title Only

CLOUD SECURITY SERVICE

With Reporting Integration into

CHANGING THREAT LANDSCAPE

VELOCITY & PACE

MALWARE HAS EXPLODED !   PROFIT MOTIVE + LIQUIDITY

CYBERCRIME AS A SERVICE !  DISTRIBUTED CRIMINAL ORGANIZATIONS !   SPECIALIZED TALENT !  MORE EFFICIENT + MORE DANGEROUS

NO NEED FOR “UBER HACKER” GROUP

DISTRIBUTION VECTORS

1_Light Title Only

DIY EXPLOIT KIT

1_Light Title Only

DIY EXPLOIT KIT

1_Light Title Only

EXPLOIT KIT REPORTING!

MALWARE PAYLOAD

MALWARE SEIZES COMPUTERS

FAKE ANTI-VIRUS EARLY RANSOMWARE

MALWARE HAS BECOME MORE DANGEROUS

CRYPTOLOCKER CURRENT RANSOMWARE

MALWARE HAS BECOME MORE DANGEROUS

CRYPTOLOCKER CURRENT RANSOMWARE

1.  12,13,14 or 15 random characters, TLDs rotating among .info, .com, .ru, .biz, . co.uk, .org and .net

2.  Frequent requests made in very short intervals to about 1000 unique domains following the above string patterns.

3.  24 hour life span

1_Light Title Only

IP Address Changes

DNS Changes: IP Addresses per Cryptolocker Domain

1_Light Title Only

EXPLODING VOLUME: 75M - 450M QUERIES PER DAY

!   Goal: try to tell if a domain has been machine generated !   Look at name: bigrams, trigrams, length, entropy, etc.

!   Look at timing: concentrated DNS queries with short life spans (temporal progression)

!   High level of activity at the time of domain generation -> fades over time

Instance 1 cso0vm2q6g86owao.thepohzi.su 5qloxxe.tohk5ja.cc k2s0euuz.oogagh.su Instance 2 v8ylm8e.thepohzi.su 2g24ar4vu8ay6.tohk5ja.cc d6vh5x1cic1yyz1i.oogagh.su Instance 3 t2250p29079m6oq8.thepohzi.su ngb0ef99.tohk5ja.cc nxdhetohak91794.oogagh.su

BIG DATA EXAMPLE – DGA ALGORITHM

MALWARE CAN DESTROY SMBs

KEYLOGGERS AND BACKDOORS

1_Light Title Only

KEYLOGGERS AND BACKDOORS THEFT AND SPREAD

1_Light Title Only

KEYLOGGERS AND BACKDOORS THEFT AND SPREAD

ATTACKS INCREASINGLY TARGET SMBs UNDER 250 USERS

PROPORTION OF BREACHES BY ORG SIZE

ORGS WITH 11-100 EMPLOYEES

ORGS WITH <11 or >100 EMPLOYEES

TARGETED ATTACKS AGAINST SMBS

2011 JUNE 2012

HAVE NO FORMAL WRITTEN INTERNET SECURITY POLICY FOR EMPLOYEES

HAVE NO INFORMAL INTERNET SECURITY POLICY FOR EMPLOYEES

THINK THEIR COMPANY IS SAFE FROM HACKERS, VIRUSES AND MALWARE

SMBs NEED MANAGED ENTERPRISE-GRADE

SECURITY

HOW DO YOU PROTECT CUSTOMERS?

ANTI-VIRUS IS JUST

A SINGLE LAYER

IN A DEFENSE IN DEPTH STRATEGY “SIGNATURE-BASED TOOLS (AV, FW & IPS) ARE ONLY EFFECTIVE AGAINST 30-50% OF CURRENT SECURITY THREATS”

“CLOUD-BASED PROVIDERS SHOULD HAVE BETTER REAL-TIME TELEMETRY OF GLOBAL EVENTS AND THE ABILITY TO RESPOND TO THESE EVENTS RAPIDLY BY MODIFYING THE SOLUTION.”

CLOUD SECURITY TO REDUCE

COMPLEXITY, TIME AND COST

1_Light Title Only

FOR MSPs

introducing…

INFECTED DEVICES IMPACT MSP MARGINS

YOUR ENGINEER’S

CLIENTS’ EMPLOYEE DOWNTIME

MALWARE COSTS

1_Light Title Only

DECREASE MALWARE CLEAN UP EXPENSES

BLOCKS PHISHING ATTEMPTS & INAPPROPRIATE USAGE

PREVENTS MALWARE

CONTAINS BOTNETS

WEB (PORTS ???)

WEB & NON-WEB

ANY APP

ANY PROTOCOL

ANY PORT

ç THE INTERNET YOUR CUSTOMERSè

CLOUD SERVICE WITH ZERO ADDED LATENCY

SECURE EVERYWHERE

!   COVERAGE FOR WORKERS ON AND OFF THE NETWORK

!   COVERAGE FOR BYOD AND UNMANAGED DEVICES

1_Light Title Only

UMBRELLA BY OPENDNS

80M+ REQUESTS TO ADVANCED MALWARE, BOTNET & PHISHING THREATS BLOCKED DAILY

NEW THREAT ORIGINS DISCOVERED OR PREDICTED DAILY 100K+

THE ONLY CLOUD-DELIVERED AND DNS-BASED WEB SECURITY SOLUTION

PROFITABLE WEB FILTER

WEB FILTER AS A VALUE ADDED SERVICE !   60 CATEGORIES !   GRANULAR WHITELIST/BLACKLIST !   CUSTOM BLOCK PAGE

FEATURES TO CHARGE A PREMIUM PRICE !   PER-COMPUTER POLICY !   BYOD AND GUEST FILTERING !   BLOCK PAGE BYPASS CODES

REPORTING AND MONITORING !   REAL-TIME ACTIVITY REPORT !   TOP DOMAINS/TOP CATEGORIES/TOP USERS !   SAVED REPORTS WITH EXPORT

PROFITABLE WEB FILTER

FAST AND EASY TO MANAGE !  SPEND LESS TIME MANAGING FILTERING

!  EASY TO USE AND UNDERSTAND

!  CENTRALIZED WEB DASHBOARD !  REMOTE MANAGEMENT !  ALL IN THE BACKGROUND

!  MULTI-TENANT !  MULTIPLE CUSTOMER ORGANIZATIONS !  MSP ADMINS HAVE ACCESS TO ALL CUSTOMERS !  CUSTOMERS ARE ISOLATED TO THEIR OWN

ORGANIZATION

1_Light Title Only

IMPROVE RENEWALS AND RETENTION

IMPROVED UPTIME !  PROACTIVE SECURITY PROTECTION !  FEWER INFECTIONS = ALWAYS ON TECHNOLOGY

VALUE REPORTS !  INFECTIONS PREVENTED !  MALWARE CONTAINED !  PHISHING BLOCKED

VIRTUAL CIO !  ASSIST HR AND STAFFING DECISIONS !  ASSESS AND PLAN NETWORK USAGE

1_Light Title Only

ConnectWise Integration

ENTERPRISE-CLASS MANAGEMENT WITHOUT THE ENTERPRISE COMPLEXITY

LIGHTWEIGHT AGENT WITH AUTOMATION POLICY TO DEPLOY

NETWORK-LEVEL PROVISIONING

(ALL DEVICES ON NETWORK INCLUDING BYOD AND UNMANAGED)

23.4.2.4/32 214.41.3.1/32 155.21.1.1/28

CLIENT-A:155.21.1.1/28 CLIENT-B: 214.41.3.1/32 CLIENT-C: 23.4.2.4/32

EASY TO DO BUSINESS WITH

VOLUME PRICING

MONTHLY BILLING

MULTI-TENANT DASHBOARD

MANAGE SEATS ON-DEMAND

BUSINESS PRACTICES ALIGNED WITH MONTHLY

RECURRING REVENUE MODELS

MANAGEMENT CONSOLE

THANK YOU! ANY QUESTIONS?...

FIND US AT Umbrella.com/msp

FOR TECHNICAL PRODUCT

QUESTIONS, EMAIL ME DIMA@OPENDNS.COM

OR JUST TWEET @GETUMBRELLA

Umbrella for MSPs: Enterprise Grade Malware Protection & Containment

Technology

16-Bit, 125 MSPS/105 MSPS/80 MSPS, 1.8 V Analog-to-Digital … · 2019-06-05 · 16-Bit, 125 MSPS/105 MSPS/80 MSPS, 1.8 V Analog-to-Digital Converter Data Sheet AD9265 Rev. C Document

AD9230 12-Bit, 170 MSPS/210 MSPS/250 MSPS, 1.8 V Analog · PDF file12-Bit, 170 MSPS/210 MSPS/250 MSPS, 1.8 V Analog-to-Digital Converter AD9230 Rev. 0 Information furnished by Analog

16-Bit, 200 MSPS/250 MSPS Analog-to-Digital Converter Data ... · 250 MSPS conversion rate and is designed ... • AD9467: 16-Bit, 200 MSPS/250 MSPS Analog-to-Digital Converter Data

Quad, 12-Bit, 170 MSPS/210 MSPS/250 MSPS Serial Output 1.8 V … · 2019. 6. 5. · Quad, 12-Bit, 170 MSPS/210 MSPS/250 MSPS Serial Output 1.8 V ADC Data Sheet AD9239 FEATURES 4 ADCs

ADC34J4x Quad-Channel, 14-Bit, 50-MSPS to 160-MSPS, Analog

16-Bit, 80 MSPS/105 MSPS/125 MSPS, 1.8 V Dual Analog-to … · 2019-06-05 · 16-Bit, 80 MSPS/105 MSPS/125 MSPS, 1.8 V Dual Analog-to-Digital Converter (ADC) AD9268 Rev. A Information

12-Bit, 80 MSPS/105 MSPS/125 MSPS/150 MSPS, 1.8 V Dual Analog-to-Digital Converter AD9627 · 2019. 6. 5. · 12-Bit, 80 MSPS/105 MSPS/125 MSPS/150 MSPS, 1.8 V Dual Analog-to-Digital

12-Bit, 170 MSPS/210 MSPS/250 MSPS, 1.8 V Analog-to-Digital … · 12-Bit, 170 MSPS/210 MSPS/250 MSPS, 1.8 V Analog-to-Digital Converter Data Sheet AD9634 FEATURES SNR = 69.7 dBFS

AD9230 12-Bit, 170 MSPS/210 MSPS/250 MSPS, 1.8 V Analog-to-Digital Converter Data ... · 2017-03-13 · Data Sheet •AD9230: 12-Bit, 170 MSPS/210 MSPS/250 MSPS, 1.8 V Analog-to-Digital

10-Bit, 20 MSPS/40 MSPS/65 MSPS/80 MSPS, 1.8 V … · 10-Bit, 20 MSPS/40 MSPS/65 MSPS/80 MSPS, 1.8 V Analog-to-Digital Converter Data Sheet AD9609 Rev. B Document Feedback Information

AD9985 110 MSPS/140 MSPS Analog Interface for Flat Panel ... · 110 MSPS/140 MSPS Analog Interface for Flat Panel Displays AD9985 Rev. 0 Information furnished by Analog Devices is

AD9230 10-Bit, 200 MSPS/250 MSPS/300 MSPS, 1.8 V Analog-to …€¦ · 10-Bit, 200 MSPS/250 MSPS/300 MSPS, 1.8 V Analog-to-Digital Converter AD9211 Rev. 0 Information furnished by

14-Bit, 170 MSPS/210 MSPS/250 MSPS, 1.8 V Dual Analog-to-Digital Converter … · 2017-03-13 · 14-Bit, 170 MSPS/210 MSPS/250 MSPS, 1.8 V Dual Analog-to-Digital Converter (ADC) Data

VERTICAL MARKET MSPs · Top 5 Government & Education MSPs Top 5 Legal MSPs 6 Top 100 Vertical Market MSPs™ 2018 Edition 7 Top 100 Vertical Market MSPs™ 2018 Edition UPSIDE The

12-Bit, 20 MSPS/40 MSPS/65 MSPS/80 MSPS, 1.8 V Analog-to ... · 12-Bit, 20 MSPS/40 MSPS/65 MSPS/80 MSPS, 1.8 V Analog-to-Digital Converter Data Sheet AD9629 Rev. B Document Feedback

16-Bit, 80 MSPS/105 MSPS/125 MSPS, 1.8 V Dual Analog-to

8-Bit, 10 MSPS to 60 MSPS, 0.65 mW/MSPS A/D Converter w

Curriculum Vitae and Bibliography Deborah S. Bash, … · Web viewInteragency Service Agreement, Arizona Health Care Cost Containment System (AHCCCS), Umbrella Agreement for Task

14-Bit, 20 MSPS/40 MSPS/65 MSPS Dual A/D Converter AD9248 · 2019-06-05 · 14-Bit, 20 MSPS/40 MSPS/65 MSPS Dual A/D Converter AD9248 Rev. B Information furnished by Analog Devices

Umbrella for MSPs: Cloud Security via N-able