The increased use of cloud-based apps in the enterprise has created a new frontier for hackers. Unsanctioned, non-enterprise-ready apps provide entries for malware. Unprotected data (while in transit or at rest) can cause data leakage. And the inability to detect unusual behavior means threats fly under the radar.

To protect against those things, IT organizations need visibility into their applications. They have to quickly detect, assess and remove threats.

Netskope Active Threat Protection can help them with that, said Sanjay Beri, co-founder and CEO of Netskope Inc.

Offering a view into cloud app usage, the tool combines threat intelligence, static and dynamic analysis, and machine-learning-based anomaly detection. This enables organizations to detect threats in real time, prioritize analysis and remediate threats that may originate from, or be further propagated by, cloud apps, he said.

According to Netskope, the tool also understands how an application is used, such as who is uploading, downloading and sharing data, which can be critical when preventing an attack or limiting its damage.

“With the constantly evolving landscape of malware, ransomware and other threats to the enterprise, IT need not only ‘rip the blindfold off’ when it comes to shadow IT, but to be able to react immediately to ensure the safety and security of sensitive data,” Beri said. “With Netskope Active Threat Protection, customers can now take advantage of the Netskope deep cloud app visibility and granular policy enforcement capabilities in tandem with the benefits of a complete threat protection suite.”

The company said Netskope Active Threat Protection includes the following:

• A 360-degree view into sanctioned and unsanctioned apps, distilled into users, activity and context;

• Contextual-based insights from threat intelligence, static and dynamic analysis and anomaly detection to detect, analyze and quarantine the latest viruses and malware; and

• Remediation built for the cloud that helps organizations run forensics in minutes rather than hours.

The tool also integrates with IT security vendors FireEye and Cyphort to share threat intelligence, including zero-day threat intelligence, provide sandboxing and provide endpoint intelligence and incident response.

Doug Cahill, senior analyst for The Enterprise Strategy Group, said the breadth and visibility, as well as policy enforcement, for sanctioned and unsanctioned cloud apps puts Netskope in the right spot to address threats to cloud-based apps.

“Through a combination of organic innovation and tight integrations with leading security controls, Netskope has introduced a smart approach that helps organizations detect and thwart threats emanating from the cloud,” he said.

Photo credit: Gerd Altmann via pixabay