Total Defense is a global leader in malware detection and anti-crimeware solutions. Over 50,000 businesses across a wide spectrum of industries have deployed the company's solutions, including some of the most sophisticated buyers of security technology worldwide, and over four million consumers worldwide use Total Defense's products. Total Defense’s solutions include anti-malware, anti-virus, parental controls, intrusion prevention, mobile security, online back-up and PC optimization. Total Defense is a former business of CA Technologies, one of the largest software companies in the world, and has operations in New York, California, Europe and Asia.
In the following interview, Paul Lipman, CEO of Total Defense, discusses 1:1 with Info Security PG, Editor-in-Chief of Info Security Products Guide, why most businesses are not truly secured yet in spite of already having invested in security appliances and services.
Info Security PG, Editor-in-Chief: Which businesses are most susceptible to cyber-crime these days? How does cyber-crime impact businesses both in terms of hard and soft costs?
Paul Lipman: The unfortunate answer is that all businesses are susceptible to cyber-crime to some degree. Cyber-crime has been called one of the fastest growing industries in the world, and this growth is fueled by the anonymity of cyberspace, the "industrialization" of malware kits, botnets etc., and the increasing amount of valuable information that businesses make available through systems that are connected to the Internet. Over a third of businesses world-wide were affected by cyber-crime in the past year, according to Price Waterhouse Coopers. Large enterprises need to worry both about broad-scale malware threats, but also the more insidious targeted attacks that are focused on stealing intellectual property, customer data and other critical corporate information. Smaller businesses share many of the same concerns as consumers – namely theft of banking credentials, credit card information and the like.
Info Security PG: Why aren’t most businesses truly secured yet in spite of already having invested in security appliances and services? There are a lot of components to security, so what does it actually mean to be secure?
Paul Lipman: The malware landscape is changing at a rapid pace, keeping pressure on security vendors to accelerate their pace of innovation to stay ahead of the threat curve. According to AV-Test.org, the number of new malware variants grew by over 40 percent in 2011, with a staggering 7,000 new pieces of malware being introduced every hour. As a result security solutions are, by necessity, becoming increasingly more complex and dynamic. Many businesses, especially smaller companies without the resources to hire full–time information security personnel, are simply unable to keep up with this pace of change and are thus at risk of compromise as the threat landscape overtakes their security measures and investments. The solution for small businesses is to partner with vendors that offer comprehensive support services, going beyond protection to ensure that the business has the right security technologies for their needs, and that these technologies are correctly installed, configured and ultimately managed on an on-going basis.
Info Security PG: Why are yesterday’s security solutions already becoming obsolete? Emerging anti-malware technologies such as cloud based anti-malware scanning, white-listing, network monitoring, and inline sandboxing efforts are currently being pursued to address the protection gaps in signature only protection. Is Cloud scanning reducing the demand on the endpoint and providing greater coverage?
Paul Lipman: Cyber-criminals are producing new malware variants at an exponential rate. The traditional signature-based approach simply can't keep pace with this growth rate. Most antimalware products are well able to address the threat of malware that has been "in the wild" for more than a few weeks or months. However it is the newest pieces of malware that represent the greatest risk. So called "zero day" threats are literally so new that no signatures exist to protect against them. This problem has driven a tremendous amount of innovation and new thinking in the security industry, of which cloud scanning is just one example. Moving the "heavy lifting" of malware detection from the endpoint to the cloud has resulted in three key benefits: firstly, it significantly reduces the tax on the endpoint device by pushing the compute cycles to massively scalable cloud infrastructures. Secondly – leveraging multiple technologies and large amounts of computing power enables vendors to provide their customers with substantially greater coverage than would be possible with endpoint-based approaches alone. Finally – the cloud scanning approach provides vendors with a unique vantage point to observe the emergence of new malware across a base of many millions of endpoints, thus enabling malware to be detected and shut down much earlier in the proliferation cycle.
Company: Total Defense
One CA Plaza,
Islandia, NY 11749 U.S.A.
Founded in: 2011
CEO: Paul Lipman, CEO
Public or Private: Private
Products: Malware detection and anti-crimeware solutions