IBM announced new cyber-security software to help fight cyber-threats in a way similar to the way the human immune system works.
On May 5, IBM introduced comprehensive new security software and services to help organizations protect their data in an environment where advanced persistent threats, zero-day attacks, breaches and the financial impact on an organization continue to rise. Through pervasive behavioral analytics and deep research expertise, IBM can help organizations stop attackers from exploiting these vulnerabilities.
According to two IBM-commissioned studies from the Ponemon Institute, the average cost of a data breach increased by 15 percent globally, reaching an average of $3.5 million. The majority of companies surveyed say targeted attacks are the greatest threat, costing them on average $9.4 million in brand equity alone.
The announcement of the IBM Threat Protection System and Critical Data Protection Program represents two years of investment in organic development and the acquisition of companies, including Q1 Labs, Trusteer, Guardium, Ounce Labs, Watchfire and Fiberlink/MaaS360.
Since forming a dedicated cyber-security business in late 2011, IBM has risen to become one of the largest players in enterprise security and has achieved six straight quarters of double-digit growth in that space, the company said. According to IDC's Software Tracker, IBM moved from the fourth-largest security vendor to the third in 2013.
The new IBM Threat Protection System leverages security intelligence and behavioral analytics to go beyond traditional signature-based defenses and firewalls to disrupt attacks across the entire attack chain—from break-in to exfiltration. The IBM Threat Protection System includes an end-to-end architecture of analytic and forensics software that helps organizations continuously prevent, detect and respond to ongoing cyber-attacks, and in some cases, eliminate the threat before the damage has occurred.
For prevention, IBM announced a new Trusteer Apex solution for endpoint malware blocking, significant enhancements to the IBM Network Protection appliance for quarantining against attacks and new integrations with key partners' network sandbox capabilities. For detection, IBM enhanced its QRadar Security Intelligence platform with new capabilities—allowing organizations to detect attacks at new scale and actively block exploits with a click. And for response, IBM introduced IBM Security QRadar Incident Forensics. IBM also continues to expand its emergency response services globally.
"Advanced persistent threats have fundamentally changed the way organizations have to approach data security," said Brendan Hannigan, general manager of IBM Security Systems, in a statement. "Today, defending against cyber-attacks requires more than a signature-based or perimeter approach. Deep analytic capabilities and forensics are vital and need to include endpoint prevention, perimeter protection and the ability to guard against attacks before they can do damage."