The PRWIRE Press Releases https:// 2021-06-03T04:52:14Z WatchGuard Unveils New Endpoint Security Product Family Within WatchGuard Cloud, Just One Year After Panda Acquisition 2021-06-03T04:52:14Z watchguard-unveils-new-endpoint-security-product-family-within-watchguard-cloud-just-one-year-after-panda-acquisition SEATTLE – June 2, 2021 – WatchGuard® Technologies, a global leader in network security and intelligence, multi-factor authentication (MFA), advanced endpoint protection, and secure Wi-Fi, today announced that it has integrated the WatchGuard Endpoint Security product family – previously known as Panda Adaptive Defense 360, Adaptive Defense, Endpoint Protection Plus and Endpoint Protection – into WatchGuard Cloud. As a result, partners and customers can now deploy and manage endpoint security, network security and MFA services via WatchGuard Cloud, enabling them to streamline security delivery, simplify operations, consolidate vendors, and bolster business growth and profitability. “WatchGuard’s driving mission is to create the security platform of MSPs’ dreams, and less than one year after acquiring Panda Security we’ve taken another significant step forward,” said Andrew Young, senior vice president of product management at WatchGuard. “MSPs need a platform that offers greater coordination across critical security services. We’re delivering next-generation antivirus, AI-enabled endpoint detection and response, network security and authentication services as a Unified Security Platform that enables MSPs to provide complete protection for customers today, and we’re making it simpler and more streamlined than ever to manage.” Regardless of which WatchGuard product categories partners offer, the WatchGuard Cloud platform offers a variety of operational advantages. MSPs can leverage fixed-term contracts, WatchGuard Points, and flexible monthly and usage-based subscriptions to procure products in the manner that best suits their business model. It also supports flexible options for upgrading, extending and delegating licenses, as well as easy set-up and template-based configurations that partners can implement across multi-tier, multi-tenant environments. This integration is the latest example of WatchGuard’s continued commitment to and investment in MSP enablement with WatchGuard Cloud enhancements. Partners and customers have been managing Firebox security environments and AuthPoint MFA deployments through this single interface since 2019. In January 2020, WatchGuard introduced its ThreatSync capabilities within WatchGuard Cloud to unify threat intelligence, correlation and scoring across the WatchGuard security stack, from network to user. Now with the addition of WatchGuard Endpoint Security solutions, WatchGuard has centralised the delivery of protection for networks, endpoints and identities to provide a truly Unified Security Platform. “Adding endpoint security services to WatchGuard Cloud is a major game-changer for our MSP business,” said David Lesnoy, president and CEO of Rand Solutions Group. “Now we can manage all our security offerings from the network to the endpoint within one unified platform, and simplify everything from initial deployment and set-up to license management, renewals and reporting.” As part of the integration, individual products previously known as Panda Endpoint Protection and Panda Endpoint Protection Plus now comprise the WatchGuard EPP (Endpoint Protection Platform) product; Panda Adaptive Defense is now WatchGuard EDR(Endpoint Detection and Response); and Panda Adaptive Defense 360 is now WatchGuard EPDR (Endpoint Protection Detection and Response). WatchGuard Endpoint Security solutions are live in WatchGuard Cloud today. For more information about WatchGuard’s growing product portfolio and capabilities, click here: https://www.watchguard.com/wgrd-products Additional Resources:WatchGuard Endpoint Security BrochureWatchGuard Endpoint Security Partner BriefWatchGuard Cloud DatasheetWatchGuard Endpoint Protection Platform DatasheetWatchGuard Endpoint Detection and Response DatasheetWatchGuard Endpoint Protection Detection and Response Datasheet About WatchGuard Technologies, Inc. WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication, advanced endpoint protection, and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 18,000 security resellers and service providers to protect more than 250,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter @WatchGuard on Facebook or on the LinkedIn Company page. Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at Secplicity.org, or wherever you find your favourite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. WatchGuard report uncovers massive increases in endpoint attacks, rising encrypted malware rates, new exploits targeting IoT devices, and more 2021-03-30T22:06:10Z watchguard-report-uncovers-massive-increases-in-endpoint-attacks-rising-encrypted-malware-rates-new-exploits-targeting-iot-devices-and-more SEATTLE – March 30, 2021 – WatchGuard® Technologies, a global leader in network security and intelligence, multi-factor authentication (MFA), advanced endpoint protection, and secure Wi-Fi, today released its Internet Security Report for Q4 2020. The report includes exciting new insights based on endpoint threat intelligence following WatchGuard’s acquisition of Panda Security in June 2020. Among its most notable findings, the report reveals that fileless malware and cryptominer attack rates grew by nearly 900% and 25% respectively, while unique ransomware payloads plummeted by 48% in 2020 compared to 2019. Additionally, the WatchGuard Threat Lab found that Q4 2020 brought a 41% increase in encrypted malware detections over the previous quarter and network attacks hit their highest levels since 2018. “The rise in sophisticated, evasive threat tactics last quarter and throughout 2020 showcases how vital it is to implement layered, end-to-end security protections,” said Corey Nachreiner, chief technology officer at WatchGuard. “The attacks are coming on all fronts, as cyber criminals increasingly leverage fileless malware, cryptominers, encrypted attacks and more, and target users both at remote locations as well as corporate assets behind the traditional network perimeter. Effective security today means prioritising endpoint detection and response, network defenses and foundational precautions such as security awareness training and strict patch management.” WatchGuard’s quarterly Internet Security Reports inform businesses, their partners and end customers about the latest malware, endpoint and network attack trends as they emerge. Key findings from the Q4 2020 report include: Fileless malware attacks skyrocket – Fileless malware rates in 2020 increased by 888% over 2019. These threats can be particularly dangerous due to their ability to evade detection by traditional endpoint protection clients and because they can succeed without victims doing anything beyond clicking a malicious link or unknowingly visiting a compromised website. Toolkits like PowerSploit and CobaltStrike allow threat actors to easily inject malicious code into other running processes and remain operational even if the victim’s defenses identify and remove the original script. Deploying endpoint detection and response solutions alongside preventative anti-malware can help identify these threats. Cryptominers on the rise following 2019 lull – After virtually all cryptocurrency prices crashed in early 2018, cryptominer infections became far less prevalent and reached a low of 633 unique variant detections in 2019. That said, attackers continued adding cryptominer modules to existing botnet infections and extract passive income from victims while abusing their networks for other cyber crime. As a result, and with prices trending upward again in Q4 2020, the volume of cryptominer malware detections climbed more than 25% over 2019 levels to reach 850 unique variants last year. Ransomware attack volumes continue to shrink – For the second year in a row, the number of unique ransomware payloads trended downward in 2020, falling to 2,152 unique payloads from 4,131 in 2019 and the all-time-high of 5,489 in 2018. These figures represent individual variants of ransomware that may have infected hundreds or thousands of endpoints worldwide. The majority of these detections resulted from signatures originally implemented in 2017 to detect WannaCry and its related variants, showing that ransomworm tactics are still thriving over three years after WannaCry burst onto the scene. The steady decline in ransomware volume indicates the attackers’ continued shift away from the unfocused, widespread campaigns of the past toward highly targeted attacks against healthcare organizations, manufacturing firms and other victims for which downtime is unacceptable. Encrypted, evasive malware attacks see double-digit growth – Despite being the fourth consecutive quarter of decreasing malware volumes overall, nearly half (47%) of all attacks WatchGuard detected at the network perimeter in Q4 were encrypted. Additionally, malware delivered via HTTPS connections increased by 41%, while encrypted zero day malware (variants that circumvent antivirus signatures) grew by 22% over Q3. Botnet malware targeting IoT devices and routers becomes a top strain – In Q4, the Linux.Generic virus (also known as “The Moon”) made its debut on WatchGuard’s list of top 10 malware detections. This malware is part of a network of servers that directly targets IoT devices and consumer-grade network devices like routers to exploit any open vulnerabilities. WatchGuard’s investigation uncovered Linux-specific malware designed for ARM processors and another payload designed for MIPS processors within the attacker’s infrastructure, indicating a clear focus on evasive attacks against IoT devices. SolarWinds breach illustrates the perils of supply chain attacks – The sophisticated, allegedly state-sponsored SolarWinds supply chain breach will have wide implications throughout the security industry for years to come. Its effects spread far beyond SolarWinds to almost 100 companies, including some major Fortune 500s, big security companies, and even the US government. WatchGuard’s detailed incident breakdown showcases the importance of defending against supply chain attacks in today’s interconnected digital ecosystem. New trojan dupes email scanners with multi-payload approach – Trojan.Script.1026663 made its way onto WatchGuard’s top five most-widespread malware detections list in Q4. The attack begins with an email asking victims to review an order list attachment. The document triggers a series of payloads and malicious code that ultimately lead the victim machine to load the final attack: the Agent Tesla remote access trojan (RAT) and keylogger. Network attack volume approaches 2018 peak – Total network attack detections grew by 5% in Q4, reaching their highest level in over two years. Additionally, total unique network attack signatures showed steady growth as well with a 4% increase over Q3. This shows that even as the world continues to operate remotely, the corporate network perimeter is still very much in play as threat actors continue to target on-premises assets. In Q4, WatchGuard appliances blocked a total of more than 20.6 million malware variants (456 per device) and nearly 3.5 million network threats (77 detections per appliance). WatchGuard Fireboxes collectively blocked 455 unique attack signatures in Q4 – a 4% increase over Q3 and the most since Q4 2018. WatchGuard’s quarterly research reports are based on anonymised Firebox Feed data from active WatchGuard appliances whose owners have opted in to share data to support the Threat Lab’s research efforts. Additionally, the report’s new endpoint threat intelligence provides deeper insight into specific malware attacks and trends throughout the year 2020 based on over 2.5 million unique payload alerts gathered from 1.7 million endpoints across 92 countries. The full report includes details on additional malware and attack trends from Q4 2020, a detailed analysis of the infamous SolarWinds supply chain attack, and key security best practices for readers. Read WatchGuard’s complete Q4 2020 Internet Security Report here: https://www.watchguard.com/wgrd-resource-center/security-report-q4-2020 About WatchGuard Technologies, Inc. WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication, advanced endpoint protection, and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 18,000 security resellers and service providers to protect more than 250,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter @WatchGuard on Facebook or on the LinkedIn Company page. Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at Secplicity.org, or wherever you find your favorite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. ENDS New WatchGuard Cloud Platform Capabilities Usher in the Era of Simplified Security Management for MSPs 2021-02-12T05:42:49Z new-watchguard-cloud-platform-capabilities-usher-in-the-era-of-simplified-security-management-for-msps SEATTLE – February 11, 2021 – WatchGuard®Technologies, a global leader in network security and intelligence, multi-factor authentication (MFA), advanced endpoint protection, and secure Wi-Fi, today announced a series of new capabilities that make WatchGuard Cloud the ideal security platform for managed service providers (MSPs). With a new single, centralised interface for delivering and managing network security, advanced threat detection, MFA, and more, MSPs will benefit from simplified client management while enabling rapid, efficient and profitable growth.Building on WatchGuard Cloud’s industry-leading centralised security visibility, MSP-specific management interface and advanced executive reporting, the latest version incorporates WatchGuard’s ThreatSync features, advanced Firebox policy management capabilities and authentication policies that enable zero-trust. With WatchGuard Cloud, MSPs can create policy templates for easy, repeatable security deployments across many subscriber accounts. The platform makes it simple to manage and report on Firebox security environments and AuthPoint MFA deployments from a single pane of glass, while its intuitive interface helps MSPs minimise arduous administrative tasks and maximise productivity and profitability.“Our vision for WatchGuard Cloud has always been to build a powerful, cloud-hosted security platform that directly supports the way MSPs do business, and simplifies every aspect of security delivery for our partners,” said Andrew Young, senior vice president of product management at WatchGuard. “The latest edition brings new levels of simplicity, flexibility and scalability to security deployments, management and reporting. WatchGuard Cloud’s continued evolution is lowering the barrier to entry for MSPs to add security to their portfolios, and solidifying it as the management platform of choice for the security channel.”Key WatchGuard Cloud Platform Enhancements:Advanced Network Security Policy Management – WatchGuard Cloud makes policy creation and management a breeze with one-click security service implementations and pre-configured policies to deploy content scanning, network inspection, content filtering, and other services at scale. WatchGuard Cloud policy templates can apply configurations to appliances across multiple tiers and tenants, enabling MSPs to quickly onboard new customers and scale deployments with group and company policies. Additionally, WatchGuard’s innovative new approach to policy creation reduces the number of rules MSPs must manage. This makes implementing rule changes and auditing configurations faster and easier, with less opportunity for mistakes. Risk-Based MFA for Simplified Zero-Trust Adoption – Enabling risk-based authentication is an essential step that organisations must take when adopting a zero-trust approach. The new AuthPoint risk framework policies in WatchGuard Cloud improve identity management capabilities by providing customisable and flexible rules to configure users and devices based on level of risk. With centralized management and repeatable, scalable policy implementation via WatchGuard Cloud, MSPs can easily manage zero-trust authentication policies across multiple customer deployments to prevent external threats and thwart potential data leaks from within, and more. Today the risk framework includes network location policies, and WatchGuard will be rapidly building additional risk policies such as geofencing and correlated time policies into the service in 2021 and beyond. Built-in End-to-End Threat Analysis – The platform leverages the ThreatSync service to unify threat intelligence, correlation and scoring across the WatchGuard security stack, from network to user. WatchGuard’s cloud-based telemetry alerts endpoints to attacks against the network and WatchGuard Firebox appliances to attacks against endpoints and specific users for automated remediation.“Strong authentication has always been a fundamental component of security and today represents a core tenet of the growing zero-trust movement. Every organisation needs MFA protection that’s not only powerful but intuitive and scalable to manage,” said Alex Cagnoni, director of authentication at WatchGuard. “This simplified approach to managing authentication within WatchGuard Cloud is the latest example of our continued investment in making MFA more secure, effective and easier to administer with AuthPoint.”The WatchGuard Cloud DifferenceWatchGuard Cloud offers fully integrated network security, MFA and threat intelligence in a single management platform. Unlike many alternative solutions, it is built from the ground up with simplicity and ease-of-use at its core. WatchGuard’s RapidDeploy cloud-based configuration tool gives users a streamlined, zero-touch method to easily set up new security environments. The platform also delivers true multi-tier, multi-tenant management capabilities, enabling MSPs to create and manage an unlimited number of customer accounts with ease. It helps MSPs demonstrate value to customer stakeholders with over 100 customisable dashboards and reports, and offers custom branding options users can leverage to white label WatchGuard services."We’re incredibly impressed with the WatchGuard Cloud platform and its new consolidated security and management capabilities WatchGuard has introduced. This simplistic and cloud-based approach can fundamentally transform how we deliver security to our end customers,” said Matt Lee, CISSP, director of technology and security at Iconic IT. “Comprehensive security deployment, management and reporting through a single pane of glass is a major differentiator in this market, which can help us better service and protect our existing clients, acquire new customers and grow our business.” WatchGuard Cloud is available with Firebox models today. Click here for more information about the platform and how to get started.Additional Resources:WatchGuard Cloud DatasheetWatchGuard Cloud eBookWatchGuard Cloud Web DemoRisk-Based Authentication eBookAuthentication Risk Assessment Guide Firebox Policy Management Datasheet About WatchGuard Technologies, Inc.WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication, advanced endpoint protection, and network intelligence. The company’s award-winning products and services are trusted around the world by over 18,000 security resellers and service providers to protect more than 250,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com.For additional information, promotions and updates, follow WatchGuard on Twitter @WatchGuard, on Facebook, or on the LinkedIn Company page. Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at Secplicity.org, or wherever you find your favorite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. ENDS WatchGuard’s New Firewalls Deliver the Power and Protection Organisations Need Today with the Agility to Evolve Tomorrow 2020-12-16T00:22:18Z watchguards-new-firewalls-deliver-the-power-and-protection-organisations-need-today-with-the-agility-to-evolve-tomorrow SEATTLE – December 15, 2020 – WatchGuard® Technologies, a global leader in network security and intelligence, secure Wi-Fi, multi-factor authentication and advanced endpoint protection, today announced the release of its new Firebox M4800 and M5800 appliances. These new firewalls provide the powerful performance, security services and flexibility businesses need as they become increasingly distributed and have more employees on the move or working outside the traditional corporate network perimeter. “Organisations of all types and sizes have undergone a profound transformation over the past year, and many are grappling with how best to maintain security from the core network to remote employees and endpoints,” said Brendan Patterson, vice president of product management at WatchGuard. “The industry-leading speed and performance of our new M Series appliances, paired with their simplicity, modularity and affordability gives our partners and customers a Unified Security Platform that can adapt to remote work deployments and evolve along with the business.” Recent WatchGuard threat intelligence shows that organisations that aren’t able to effectively analyse encrypted traffic will miss 54% of incoming attacks, emphasizing the need for HTTPS inspection in today’s threat landscape. The new Firebox M4800 and M5800 achieve throughput of 5.2 Gbps and 11.3 Gbps respectively with UTM services enabled. The Firebox M5800 has achieved certified performance results through open, standardised testing developed by NetSecOPEN and adopted by the Internet Engineering Task Force (IETF). In the NetSecOPEN testing, the Firebox M5800 is certified for speeds up to 4.9 Gbps with all security scanning and HTTPS content inspection enabled. As WatchGuard’s highest performing Firebox appliances to date, these new models ensure that users don’t have to choose between throughput and security. The complete report is available for download here: https://www.watchguard.com/wgrd-resource-center/firebox-m4800m5800-netsecopenAs business operations continue to change in response to COVID-19, organisations and their trusted IT solution providers need a security platform that can adapt as networks evolve. Both new M Series appliances provide this flexibility through two available slots for network modules with additional fibre and copper port options (two 40 Gb fibre, four 10Gb fibre, eight 1Gb fibre or eight 1Gb copper). The M4800 and M5800 expansion modules match those of WatchGuard’s mid-range Firebox appliances, further enabling users with the flexibility they need to quickly and simply adjust and reinforce their network security posture over time. The new Firebox M4800 and M5800 offer a range of additional features and benefits, including:Secure Remote Access Made Easy – Usage of Access Portal, WatchGuard’s clientless VPN service for secure remote access, has grown by over 85% over the past year. With the M4800 or M5800, users can simply leverage web browsers to securely connect to third-party web applications, internal applications, and Microsoft Exchange services, as well as create RDP and SSH sessions to local resources, wherever they are. Simplified Cloud-Based Visibility and Management – The WatchGuard Cloud platform makes it easy for users to quickly and simply manage these appliances, and provides deep network visibility that makes it possible to execute timely, informed, and effective security actions anytime, anywhere. WatchGuard Cloud offers over 100 dashboards and reports, displaying both high-level and in-depth insights on trends and anomalies. M4800 and M5800 appliances with the Total Security option come with one month of log and report retention included at no extra charge.Automation to the Core – The new M Series appliances are designed with automation to the core, allowing both midmarket organisations and IT solution providers to do more with less. WatchGuard’s automated capabilities make it possible to deploy new appliances from the cloud, block threats, update signatures, detect and kill malware, and streamline management processes. “Our top priority as a managed service provider today is to be able to deploy and maintain high-performing and secure networks for our customers. We have got a significantly lower latency and increased performance, while extending protection to our remote workforce,” said Carsten Alnoe, CEO at aimIT Denmark. “WatchGuard’s new M4800 - M Series firewalls allow us to consolidate critical network and security functions under a single platform to better inspect encrypted traffic, handle remote work security considerations, and in general, simplify how we manage and secure our customers’ distributed enterprise deployments.”To learn more about WatchGuard’s complete product portfolio click here: https://www.watchguard.com/wgrd-products For more information on availability, support and migration paths for WatchGuard products, click here: https://www.watchguard.com/wgrd-resource-center/end-of-life-policy ADDITIONAL MATERIALS:NetSecOPEN Report: https://www.watchguard.com/wgrd-resource-center/firebox-m4800m5800-netsecopenFirebox M Series Web Page: https://www.watchguard.com/wgrd-products/rack-mount/m-seriesWatchGuard Appliance Sizing Tool: https://www.watchguard.com/wgrd-resource-center/watchguard-appliance-sizing-toolAbout WatchGuard Technologies, Inc.WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication, advanced endpoint protection, and network intelligence. The company’s award-winning products and services are trusted around the world by over 18,000 security resellers and service providers to protect more than 250,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter @WatchGuard, on Facebook, or on the LinkedIn Company page. Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at Secplicity.org, or wherever you find your favourite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. WatchGuard Report Details COVID-19 Impact on Security Threat Landscape 2020-12-09T23:49:48Z watchguard-report-details-covid-19-impact-on-security-threat-landscape SEATTLE – December 9, 2020 – WatchGuard® Technologies, a global leader in network security and intelligence, advanced endpoint protection, multi-factor authentication and secure Wi-Fi, today announced the release of its Internet Security Report for Q3 2020. Top findings from the research reveal how COVID-19 has impacted the security threat landscape, with evidence that attackers continue to target corporate networks despite the shift to remote work, and a rise in pandemic-related malicious domains and phishing campaigns. “As the impact of COVID-19 continues to unfold, our threat intelligence provides key insight into how attackers are adjusting their tactics,” said Corey Nachreiner, chief technology officer at WatchGuard. “While there’s no such thing as ‘the new normal’ when it comes to security, businesses can be sure that increasing protection for both the endpoint and the network will be a priority in 2021 and beyond. It will also be important to establish a layered approach to information security, with services that can mitigate evasive and encrypted attacks, sophisticated phishing campaigns and more.” WatchGuard’s Internet Security Reports inform businesses, their partners and end customers with hard data, expert analysis and actionable insights on the latest malware and network attack trends as they emerge and influence the ever-evolving threat landscape. Key findings from the Q3 2020 report include: Network attacks and unique detections both hit two-year highs – Network attacks swelled to more than 3.3 million in Q3, representing a 90% increase over the previous quarter and the highest level in two years. Unique network attack signatures also continued on an upward trajectory, reaching a two-year high in Q3 as well. These findings highlight the fact that businesses must prioritise maintaining and strengthening protections for network-based assets and services, even as workforces become increasingly remote.COVID-19 scams grow in prevalence – In Q3, a COVID-19 adware campaign running on websites used for legitimate pandemic support purposes made WatchGuard’s list of the top 10 compromised websites. WatchGuard also uncovered a phishing attack that leverages Microsoft SharePoint to host a pseudo-login page impersonating the United Nations (UN), and the email hook contained messaging around small business relief from the UN due to COVID-19. These findings further emphasise that attackers will continue to leverage the fear, uncertainty, and doubt surrounding the global health crisis to entice and fool their victims.Businesses click on hundreds of phishing attacks and bad links – In Q3, WatchGuard’s DNSWatch service blocked a combined 2,764,736 malicious domain connections, which translates to 499 blocked connections per organisation in total. Breaking it down further, each organization would have reached 262 malware domains, 71 compromised websites, and 52 phishing campaigns. Combined with the aforementioned rise in convincing COVID-19 scams, these findings illustrate the importance of deploying DNS filtering services and user security awareness training.Attackers probe for vulnerable SCADA systems in the U.S. – The one new addition to WatchGuard’s most-widespread network attacks list in Q3 exploits a previously-patched authentication bypass vulnerability in a popular supervisory control and data acquisition (SCADA) control system. While this class of vulnerability isn’t as serious as a remote code execution flaw, it could still allow an attacker to take control of the SCADA software running on the server. Attackers targeted nearly 50% of U.S. networks with this threat in Q3, highlighting that industrial control systems could be a major focus area for bad actors in the coming year.LokiBot look-a-like debuts as a top widespread malware variant – Farelt, a password stealer that resembles LokiBot, made its way into WatchGuard’s top five most-widespread malware detections list in Q3. Though it is unclear if the Farelt botnet uses the same command and control structure as LokiBot, there’s a high probability the same group, SilverTerrier, created both malware variants. This botnet takes many steps to bypass antivirus controls and fool users into installing the malware. While researching the threat, WatchGuard found strong evidence indicating the malware has likely targeted many more victims than the data suggests.Emotet persists – Emotet, a prolific banking trojan and known password stealer, made its debut on WatchGuard’s top ten malware list for the first time in Q3 and narrowly missed the top ten list of domains distributing malware (by only a few connections). Despite coming in at #11 for the latter list, this appearance is particularly notable, as the WatchGuard Threat Lab and other research teams have seen current Emotet infections dropping additional payloads like Trickbot and even the Ryuk ransomware with no signs of slowing down. WatchGuard’s quarterly research reports are based on anonymised Firebox Feed data from active WatchGuard appliances whose owners have opted in to share data to support the Threat Lab’s research efforts. In Q3, nearly 48,000 WatchGuard appliances contributed data to the report (the most ever), blocking a total of more than 21.5 million malware variants (450 per device) and more than 3.3 million network threats (or roughly 70 detections per appliance). Firebox appliances continued their upward trend of unique signature detections as well, collectively identifying and blocking 438 unique attack signatures – a 6.8% increase over Q2 and the most since Q4 2018. The complete report includes in-depth research and key defensive best practices that businesses of all sizes can use to protect themselves against modern security threats. The report also features a detailed analysis of the historic Twitter hack that compromised 130 high-profile accounts to promote a Bitcoin scam in July 2020. Read WatchGuard’s full Q3 2020 Internet Security Report here today: https://www.watchguard.com/wgrd-resource-center/security-report-q3-2020. About WatchGuard Technologies, Inc. WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication, advanced endpoint protection, and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 18,000 security resellers and service providers to protect more than 250,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter @WatchGuard on Facebook or on the LinkedIn Company page. Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at Secplicity.org, or wherever you find your favorite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. ### WatchGuard Research Finds 12% Spike in Evasive Threats Despite Decrease in Overall Malware Volume 2020-09-25T00:27:37Z watchguard-research-finds-12-spike-in-evasive-threats-despite-decrease-in-overall-malware-volume SEATTLE – 24 September , 2020 –WatchGuard® Technologies, a global leader in network security and intelligence, secure Wi-Fi, multi-factor authentication and advanced endpoint protection, today announced the release of its Internet Security Report for Q2 2020 (https://www.watchguard.com/wgrd-resource-center/security-report-q2-2020). Among its most notable findings the report showed that despite an 8% decrease in overall malware detections in Q2, 70% of all attacks involved zero day malware (variants that circumvent antivirus signatures), which represents a 12% increase over the previous quarter. “Businesses aren’t the only ones that have adjusted operations due to the global COVID-19 pandemic – cyber criminals have too,” said Corey Nachreiner, CTO of WatchGuard. “The rise in sophisticated attacks, despite the fact that overall malware detections declined in Q2 (likely due to the shift to remote work), shows that attackers are turning to more evasive tactics that traditional signature-based anti-malware defenses simply can’t catch. Every organization should be prioritising behaviour-based threat detection, cloud-based sandboxing, and a layered set of security services to protect both the core network, as well as remote workforces.” WatchGuard’s Internet Security Report provides a detailed look at the latest malware and network attack trends, in-depth threat research and recommended security best practices organisations can leverage to better protect themselves, their partners and customers. Key findings from the Q2 2020 report include: Attackers Continue to Leverage Evasive and Encrypted Threats – Zero day malware made up more than two-thirds of the total detections in Q2, while attacks sent over encrypted HTTPS connections accounted for 34%. Organisations that aren’t able to inspect encrypted traffic will miss a massive one-third of incoming threats. Even though the percentage of threats using encryption decreased from 64% in Q1, the volume of HTTPS-encrypted malware increased dramatically. It appears that more administrators are taking the necessary steps to enable HTTPS inspection on Firebox security appliances, but there’s still more work to be done. JavaScript-based Attacks Are on the Rise – The scam script Trojan.Gnaeus made its debut at the top of WatchGuard’s top 10 malware list for Q2, making up nearly one in five malware detections. Gnaeus malware allows threat actors to hijack control of the victim’s browser with obfuscated code, and forcefully redirect away from their intended web destinations to domains under the attacker’s control. Another popup-style JavaScript attack, J.S. PopUnder, was one of the most widespread malware variants last quarter. In this case, an obfuscated script scans a victim’s system properties and blocks debugging attempts as an anti-detection tactic. To combat these threats, organisations should prevent users from loading a browser extension from an unknown source, keep browsers up to date with the latest patches, use reputable adblockers and maintain an updated anti-malware engine. Attackers Increasingly Use Encrypted Excel Files to Hide Malware – XML-Trojan.Abracadabra is a new addition to WatchGuard’s top 10 malware detections list, showing a rapid growth in popularity since the technique emerged in April. Abracadabrais a malware variant delivered as an encrypted Excel file with the password “VelvetSweatshop” (the default password for Excel documents). Once opened, Excel automatically decrypts the file and a macro VBA script inside the spreadsheet downloads and runs an executable. The use of a default password allows this malware to bypass many basic antivirus solutions since the file is encrypted and then decrypted by Excel. Organisations should never allow macros from an untrusted source, and leverage cloud-based sandboxing to safely verify the true intent of potentially dangerous files before they can cause an infection. An Old, Highly Exploitable DoS Attack Makes a Comeback – A six-year-old denial of service (DoS) vulnerability affecting WordPress and Drupal made an appearance on WatchGuard’s list of top 10 network attacks by volume in Q2. This vulnerability is particularly severe because it affects every unpatched Drupal and WordPress installation and creates DoS scenarios in which bad actors can cause CPU and memory exhaustion on underlying hardware. Despite the high volume of these attacks, they were hyper-focused on a few dozen networks primarily in Germany. Since DoS scenarios require sustained traffic to victim networks, this means there’s a strong likelihood that attackers were selecting their targets intentionally. Malware Domains Leverage Command and Control Servers to Wreak Havoc – Two new destinations made WatchGuard’s top malware domains list in Q2. The most common was findresults[.]site, which uses a C&C server for a Dadobra trojan variant that creates an obfuscated file and associated registry to ensure the attack runs and can exfiltrate sensitive data and download additional malware when users start up Windows systems. One user alerted the WatchGuard team to Cioco-froll[.]com, which uses another C&C server to support an Asprox botnet variant (often delivered via PDF document) and provides a C&C beacon to let the attacker know it has gained persistence and is ready to participate in the botnet. DNS firewalling can help organisations detect and block these kinds of threats independent of the application protocol for the connection.WatchGuard’s quarterly research reports are based on anonymized Firebox Feed data from active WatchGuard appliances whose owners have opted in to share data to support the Threat Lab’s research efforts. In Q2, nearly 42,000 WatchGuard appliances contributed data to the report, blocking a total of more than 28.5 million malware variants (684 per device) and more than 1.75 million network threats (42 per device). Firebox appliances collectively detected and blocked 410 unique attack signatures in Q2, a 15% increase over Q1 and the most since Q4 2018. The complete report includes more insights on the top malware and network trends affecting midmarket businesses today, as well as recommended security strategies and best practices to defend against them. The report also includes a detailed analysis of the recent data breach spree brought on by hacking group ShinyHunters. Read WatchGuard’s full Q2 2020 Internet Security Report here today: https://www.watchguard.com/wgrd-resource-center/security-report-q2-2020. About WatchGuard Technologies, Inc.WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication, advanced endpoint protection, and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 10,000 security resellers and service providers to protect more than 80,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter @WatchGuard, on Facebook (https://www.facebook.com/watchguardtechnologies) or on the Linkedin Company page (https://www.linkedin.com/company/watchguard-technologies/). Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at: https://www.secplicity.org/category/the-443. Subscribe to The 443 – Security Simplified podcast at Secplicity.org (https://www.secplicity.org/category/the-443/) or wherever you find your favourite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. ENDS WatchGuard Further Expands Secure Wi-Fi Portfolio, the Industry’s Most Powerful Answer to Wireless Threats 2020-07-30T23:26:53Z watchguard-further-expands-secure-wi-fi-portfolio-the-industrys-most-powerful-answer-to-wireless-threats SEATTLE – July 30, 2020 –WatchGuard Technologies, a leading global provider of network security and intelligence, secure Wi-Fi and multi-factor authentication, today highlighted the continued expansion of its Secure Wi-Fi portfolio with the recent release of two new access points (APs); the AP225W and the AP327X. These new APs offer market-leading Wi-Fi performance and scalability, and the ability to extend Trusted Wireless Environments into multi-dwelling unit (MDU) deployments and harsh outdoor environments. According to a new report from independent product test center, Miercom, no other brand of wireless AP can deliver a Trusted Wireless Environment that automatically detects and prevents all six known Wi-Fi threat categories. The report also found that WatchGuard APs can serve as a WIPS overlay for wireless networks made up of competing solutions that are susceptible to these Wi-Fi attacks. “As organisations of all sizes increasingly rely on wireless connectivity for day-to-day operations, secure Wi-Fi is a modern business imperative. That’s why WatchGuard is committed to developing Wi-Fi solutions that are simple, powerful, and capable of delivering Trusted Wireless Environments. These new APs are the latest example of our efforts to expand the types of organisations and environments we’re able to protect,” said Brendan Patterson, vice president of product management at WatchGuard. “As we continue to see many leading vendors under prioritise wireless security, we urge every organisation and IT solution provider to carefully assess their current Wi-Fi systems to determine if they can automatically mitigate today’s most prevalent Wi-Fi threats.” Flexible and Secure: The New WatchGuard AP225W Designed to provide fast and secure Wi-Fi connectivity to organisations with high volumes of users siloed within a single location, WatchGuard’s new wall plate AP225W is perfect for MDU environments such as dorm rooms, shared office spaces, smart apartments and condos, assisted living facilities, military housing units, and hotels. This AP comes equipped with dual-concurrent 5 GHz and 2.4 GHz band radios, and supports data rates up to 867 GHz and 400 Mbps respectively, delivering broad, fast, and reliable Wi-Fi coverage. For schools and businesses during and after the COVID-19 pandemic, this type of secure, fast Wi-Fi access will be critical to support remote learning and operations, and social distancing. Administrators can also connect up to three network devices to the AP using one 802.3af PoE output port (while simultaneously using its three Ethernet ports) to dramatically reduce cabling and switching costs. In addition to its enterprise-grade performance, the AP225W offers simple cloud-based management capabilities and WatchGuard’s patented Wireless Intrusion Prevention System (WIPS) technology to block Wi-Fi attacks. For managed service providers (MSPs), the product’s flexibility and security features offer a compelling way to differentiate from the competition, secure new customers in MDU markets and establish new revenue streams. Meeting Outdoor Connectivity Demands: The New WatchGuard AP327X Today more than ever, people expect ubiquitous Wi-Fi access. In fact, the global outdoor Wi-Fi market is projected to reach US $63.25 billion by the end of 2023 (up from US $28.51 billion in 2017). WatchGuard’s new AP327X is designed to deliver fast, secure Wi-Fi connectivity in environments with challenging outdoor dynamics such as warehouses, manufacturing yards, malls, public and municipal Wi-Fi zones, campsites and more. This new model features an IP67-rated enclosure and comes equipped with four N-Type connectors that support a variety of external antennas, which provide the flexible, omni-directional antenna pattern coverage capabilities often required in harsher outdoor environments. Enabled with cloud-based management and WatchGuard’s industry-leading WIPS, MSPs can leverage the new AP327X’s capabilities to both establish new recurring services for existing customers, and acquire new customers in need of secure, high-performance outdoor Wi-Fi. The opportunity for MSPs in this space is growing rapidly, with some estimates projecting that the global managed Wi-Fi solutions market will double to US $6.11 billion by 2022, from $3.07 billion in 2017. When WatchGuard’s APs are managed with WatchGuard Wi-Fi Cloud, midmarket organisations and the MSPs that support them can extend their ability to build Trusted Wireless Environments into MDU settings and harsh outdoor deployment conditions. At the same time, this centralised Wi-Fi management interface enables users with intelligent network health, visibility and troubleshooting capabilities, powerful location-based analytics, guest engagement tools and more. Download the Miercom Report: Protecting New and Existing AP Installations from Wi-Fi Hacking (https://www.watchguard.com/wgrd-resource-center/wifi-wips-report) Miercom’s new study evaluated leading APs from top Wi-Fi vendors, and found that WatchGuard’s solution is the only one in the market capable of automatically detecting and preventing the six known wireless security threat categories. It also determined that when deployed as a dedicated WIPS security sensor within Wi-Fi networks comprised of competing APs, a single WatchGuard AP can automatically mitigate all wireless threats that the existing system would otherwise be unable to stop. This means that deploying just one WatchGuard AP can allow organisations to build Trusted Wireless Environments without going through the costly and time-consuming process of ripping and replacing existing infrastructure “WatchGuard’s Wi-Fi security solutions are the most powerful and easy-to-use on the market,” said Alberto Oliveira, head of security services at TrueSec. “The APs are incredibly simple to configure, deploy and monitor, and offer industry-leading wireless security. Their WIPS capabilities enable customers with Trusted Wireless Environments, while the performance and management features deliver high-quality Wi-Fi access. Offering this type of all-in-one secure Wi-Fi system is a major competitive differentiator for our business, and our customers love it.” WatchGuard’s AP225W and AP327X are available for purchase today. For more information on these new products and WatchGuard’s complete Secure Wi-Fi portfolio, click here: https://www.watchguard.com/wgrd-products/secure-wifi Download the full Miercom report here: https://www.watchguard.com/wgrd-resource-center/wifi-wips-report To join the Trusted Wireless Environment movement and advocate for a global security standard for Wi-Fi, click here: https://www.trustedwirelessenvironment.com Additional Resources:AP225W Product Details: https://p.widencdn.net/hq4mhy/AP_225W_DatasheetAP327X Product Details: https://p.widencdn.net/hr5ej3/Datasheet_AP327XWebinar: 5 Simple Ways To Secure Your Wi-Fi: https://www.watchguard.com/wgrd-events/5-simple-ways-secure-your-wi-fi-0WatchGuard Wi-Fi Cloud Details: https://www.watchguard.com/wgrd-products/secure-wifi/wifi-cloud-managementTrusted Wireless Environment: Don’t Let Wi-fi Be Your Biggest Security Gap: https://www.watchguard.com/wgrd-products/secure-wifi/wifi-cloud-managementeBook: Wi-Fi Buyer’s Guide for the Small Business: https://www.watchguard.com/wgrd-resource-center/ebook/secure-wi-fi-buyers-guide-en About WatchGuard Technologies, Inc. WatchGuard Technologies, Inc. is a leading global provider of network security, secure Wi-Fi, multi-factor authentication and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 10,000 security resellers and service providers to protect more than 80,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter on Facebook or on the Linkedin company page. Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at: www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at Secplicity.org (https://www.secplicity.org/category/the-443/) or wherever you find your favourite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. ### WatchGuard Technologies Report Finds Two-Thirds of Malware is Encrypted, Invisible Without HTTPS Inspection 2020-06-25T04:36:38Z watchguard-technologies-report-finds-two-thirds-of-malware-is-encrypted-invisible-without-https-inspection SEATTLE – June 24, 2020 – WatchGuard® Technologies, a global leader in network security and intelligence, secure Wi-Fi, multi-factor authentication and advanced endpoint protection, today announced the release of its Internet Security Report for Q1 2020. For the first time ever, this report includes data on the percentage of malware in the wild delivered via encrypted HTTPS connections. WatchGuard’s threat intelligence shows that 67% of all malware in Q1 was delivered via HTTPS, so organisations without security solutions capable of inspecting encrypted traffic will miss two-thirds of incoming threats.Additionally, 72% of encrypted malware was classified as zero day (meaning no antivirus signature exists for it, and it will evade signature-based protections). These findings show that HTTPS inspection and advanced behavior-based threat detection and response solutions are now requirements for every security-conscious organization. The report also includes a special section detailing the impact of COVID-19 on the threat landscape. “Some organisations are reluctant to set up HTTPS inspection due to the extra work involved, but our threat data clearly shows that a majority of malware is delivered through encrypted connections and that letting traffic go uninspected is simply no longer an option,” said Corey Nachreiner, chief technology officer at WatchGuard. “As malware continues to become more advanced and evasive, the only reliable approach to defense is implementing a set of layered security services, including advanced threat detection methods and HTTPS inspection.” WatchGuard’s Internet Security Report prepares midmarket businesses, the service providers that support them, and the end users that work for them with data on the trends, research and best practices they need to defend against modern security threats. Here are the key findings from the Q1 2020 report:Monero cryptominers surge in popularity. Five of the top ten domains distributing malware in Q1 (identified by WatchGuard’s DNS filtering service DNS Watch) either hosted or controlled Monero cryptominers. This sudden jump in cryptominer popularity could simply be due to its utility; adding a cryptomining module to malware is an easy way for online criminals to generate passive income. Flawed-Ammyy and Cryxos malware variants join top lists. The Cryxos trojan was third on WatchGuard’s top-five encrypted malware list and also third on its top-five most widespread malware detections list, primarily targeting Hong Kong. It is delivered as an email attachment disguised as an invoice and will ask the user to enter their email and password, which it then stores. Flawed-Ammyy is a support scam where the attacker uses the Ammyy Admin support software to gain remote access to the victim’s computer. Three-year-old Adobe vulnerability appears in top network attacks. An Adobe Acrobat Reader exploit that was patched in Aug. 2017 appeared in WatchGuard’s top network attacks list for the first time in Q1. This vulnerability resurfacing several years after being discovered and resolved illustrates the importance of regularly patching and updating systems. Mapp Engage, AT&T and Bet365 targeted with spear phishing campaigns. Three new domains hosting phishing campaigns appeared on WatchGuard top-ten list in Q1 2020. They impersonated digital marketing and analytics product Mapp Engage, online betting platform Bet365 (this campaign was in Chinese) and an AT&T login page (this campaign is no longer active at the time of the report’s publication). COVID-19 Impact. Q1 2020 was only the start of the massive changes to the cyber threat landscape brought on by the COVID-19 pandemic. Even in just these first three months of 2020, we still saw a massive rise in remote workers and attacks targeting individuals. Malware hits and network attacks decline. Overall there were 6.9% fewer malware hits and 11.6% fewer network attacks in Q1, despite a 9% increase in the number of Fireboxes contributing data. This could be attributed to fewer potential targets operating within the traditional network perimeter with worldwide work-from-home policies in full force during the COVID-19 pandemic. Great Britain and Germany heavily targeted by widespread malware threats. WatchGuard’s most widespread malware list showed Germany and Great Britain were top targets for almost all of the most prevalent malware in Q1.Third-party testing has found that WatchGuard products consistently maintain high throughput when inspecting HTTPS traffic. Many competitive products show a significant degradation in performance in this scenario. For example, an independent test performed by Miercom found that the Firebox M370 outperformed competitive products while inspecting HTTPS traffic with full security services enabled.The findings in WatchGuard’s Internet Security Reports are drawn from anonymised Firebox Feed data from active WatchGuard appliances whose owners have opted in to share data to support the Threat Lab’s research efforts. Today, over 44,000 appliances worldwide contribute threat intelligence data to the report. In Q1 2020, they blocked over 32,148,519 malware variants in total (730 samples per device) and more than 1,660,000 network attacks (38 attacks per device). The complete report includes key defensive best practices that organizations of all sizes can use to protect themselves in today’s threat landscape and a detailed analysis of how the COVID-19 pandemic and associated shift to working from home affected the cyber security landscape. About WatchGuard Technologies, Inc.WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 10,000 security resellers and service providers to protect more than 80,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com For additional information, promotions and updates, follow WatchGuard on Twitter:@ WatchGuard, on Facebook (https://www.facebook.com/watchguardtechnologies) or on the Linkedin Company page (https://www.linkedin.com/company/watchguard-technologies). Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at: http://www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at: https://www.secplicity.org or wherever you find your favourite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners.### WatchGuard Teams with Leader Systems to Launch Australia’s First Pay-as-You-Go Subscription Service for Network Security Hardware and Services 2020-06-14T22:41:38Z watchguard-teams-with-leader-systems-to-launch-australias-first-pay-as-you-go-subscription-service-for-network-security-hardware-and-services SYDNEY – June 15, 2020 – WatchGuard® Technologies, a global leader in network security and intelligence, secure Wi-Fi and multi-factor authentication, has teamed with Leader Systems to launch a zero upfront payment firewall subscription service in Australia. Available for both three-year and flexible monthly pay-as-you-go terms, the new industry first subscription service is available from a purpose-built marketplace on the Leader Systems website. It provides resellers and their customers with true purchasing flexibility, with the freedom to select a pricing model that best suits their business – whether that be traditional up-front purchases or monthly pay-as-you-go models. The pay-as-you-go subscription will be most appealing to resellers and their customers looking to avoid time-consuming, costly and manual processes for purchasing or leasing security solutions up front, and fixed-term contracts that limit scalability. It also eliminates up-front expenses and long-term commitments for hardware, and allows partners to suspend, activate, reassign and scale various security services as customer needs change and grow over time. “The launch of this new subscription service in Australia is perfect timing for many small to medium-sized businesses as it provides access in uncertain times to all the latest Firebox hardware functionality appliances with zero upfront costs, no long-term contracts and fixed monthly billing,” says Mark Sinclair, ANZ Regional Director, WatchGuard Technologies. “At the same time, Leader Systems are one of the few Microsoft Cloud Solution Providers in the country so it can now offer businesses a one stop shop for all their subscription licensing needs. “The combination of Leader Systems’ expert, national distribution and delivery with the WatchGuard subscription service will also be a winning formula for reseller success in signing on companies who might be suffering from cashflow issues in the months ahead yet require the best cyber security without the upfront cost of hardware to ensure their own business continuity.” Australian resellers are increasingly leveraging monthly, pay-as-you-go options for their customers, but because so few vendors and distributors offer compatible purchasing structures, they’re often faced with capital bottlenecks and cash flow issues. As a 100 per cent channel-focused company that’s dedicated to partner support and enablement, the new WatchGuard subscriptions offering is designed to further simplify, streamline and strengthen how the company’s partners do business with WatchGuard and meet their customers’ security needs. Theo Kristoris, Managing Director, Leader Systems, says, “Our aim is to help our resellers grow and be profitable and the WatchGuard subscription service is an affordable solution for end users at a time when businesses are looking at their cost base. At the same time, it will enable us to further drive agility, flexibility in the channel. The combination of our easy to use marketplace portal, nationwide warehousing infrastructure and WatchGuard licensing will allow us to automatically assign an appliance to a customer, provide fast delivery and unleash cash flow necessary for streamlined end user business operations” WatchGuard reseller partners can purchase pay-as-you-go subscriptions for tabletop and rackmount Fireboxes and desired security services (https://www.watchguard.com/wgrd-products/security-services) through the Leader Computers marketplace from June 10th 2020. Today’s announcement also coincides with the launch of release of new Firebox T Series tabletop firewall appliances from WatchGuard. WatchGuard’s new T20, T40 and T80 Fireboxes equip small, home and midsize office environments with the advanced performance required to support business-critical internet speeds and a broad range of enterprise-grade security services delivered in a compact form factor. “As internet speeds continue to increase and threat actors leverage sophisticated tactics to compromise networks and users, businesses can’t afford to compromise on security or performance,” said Brendan Patterson, vice president of product management at WatchGuard. “Small and midsize organisations without adequate security resources require the best of both worlds. With leading throughput levels, layered security services, zero-touch SD-WAN capabilities and many other benefits, our new line of tabletop security appliances provides just that.” About WatchGuard Technologies, Inc. WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 10,000 security resellers and service providers to protect more than 80,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com For additional information, promotions and updates, follow WatchGuard on Twitter:@ WatchGuard, on Facebook (https://www.facebook.com/watchguardtechnologies) or on the Linkedin Company page (https://www.linkedin.com/company/watchguard-technologies). Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at: http://www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at: https://www.secplicity.org or wherever you find your favourite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. ENDS WatchGuard Brings Simplified, Flexible Security to Small, Home, and Midsize Office Environments with New Tabletop Firewall Lineup 2020-06-10T01:33:45Z watchguard-brings-simplified-flexible-security-to-small-home-and-midsize-office-environments-with-new-tabletop-firewall-lineup SEATTLE – June 9, 2020 – WatchGuard® Technologies, a global leader in network security and intelligence, secure Wi-Fi and multi-factor authentication, today announced the release of new Firebox T Series tabletop firewall appliances. WatchGuard’s new T20, T40 and T80 Fireboxes equip small, home and midsize office environments with the advanced performance required to support business-critical internet speeds and a broad range of enterprise-grade security services delivered in a compact form factor. “As internet speeds continue to increase and threat actors leverage sophisticated tactics to compromise networks and users, businesses can’t afford to compromise on security or performance,” said Brendan Patterson, vice president of product management at WatchGuard. “Small and midsize organisations without adequate security resources require the best of both worlds. With leading throughput levels, layered security services, zero-touch SD-WAN capabilities and many other benefits, our new line of tabletop security appliances provides just that.” WatchGuard’s new tabletop security appliances are built to provide the advanced throughput and improved HTTPS traffic processing today’s organisations need to keep up with the ever-increasing velocity of business, along with a comprehensive set of security services. The new T Series firewalls allow small and midmarket organisations and the managed service providers (MSPs) that support them to deploy gateway antivirus, content and URL filtering, antispam, intrusion prevention, application control, cloud sandboxing, endpoint protections and more – all in a simple, cost-effective and easy-to-manage package. The Firebox T20 – Designed specifically for organisations and managed service providers that need to extend protection to home and small office locations, the Firebox T20 can operate as either a stand-alone solution or be centrally managed from corporate headquarters. Coupled with the Total Security Suite, the T20 blocks outsiders from entering networks, monitors traffic to stop malicious email attachments, phishing attempts, ransomware and other attacks. The appliance is also available in a T20-W Wi-Fi-enabled model, which features 802.11ac wireless capabilities. The Firebox T40 – An economical security powerhouse in a small form factor, the T40 brings critical enterprise-level security to distributed environments such as small offices, branch locations and small retail shops. Enabled with the full Total Security Suite from WatchGuard, this appliance provides every feature present in more advanced firewalls, including key security protections like ransomware defense, AI-powered threat prevention and more. Also available in a Wi-Fi-enabled version, the T40-W offers 802.11ac wireless capabilities that deliver superior download and upload speeds. The Firebox T80 – Perfect for a wide array of midsize office environments, the Firebox T80 delivers exceptionally high throughput with full UTM protection when compared to alternative tabletop firewalls. The T80 includes an expansion module option for custom port configurations that provides integrated fibre connectivity right from the appliance. This SFP+ module offers an additional 1Gb or 10Gb fibre port and allows midsize organizations and their MSPs to adapt as connectivity needs evolve over time. Additionally, it is one of the only tabletop appliances available on the market today that features two Power-over-Ethernet (PoE+) ports. When installed with RapidDeploy, WatchGuard’s cloud-based configuration solution, and managed via the WatchGuard Cloud platform, these new T Series appliance make it simple to bring enterprise-grade security to small, home and midsize office environments. Additional features include: SD-WAN with Zero-Touch Deployment – T Series Fireboxes offer integrated SD-WAN capabilities, making network resiliency and optimisation easy. With built-in, zero-touch SD-WAN functionality, these appliances enable organisations to reduce the need for expensive MPLS or 4G/LTE connections, avoid sending traffic from remote sites back through a central data centre and support hybrid WAN architectures. PoE+ – The Firebox T40 and T80 feature integrated PoE+, with one port and two ports, respectively. This enables organisations to power peripheral devices such as security cameras, VoIP phones and wireless access points. This removes the cost and inconvenience of running separate power cables to each individual device. IntelligentAV – Now available on the T40 and T80, IntelligentAV leverages a machine-learning engine to better defend against continuously evolving zero day malware. While signature-based AV solutions are only able to detect known threats, IntelligentAV makes it possible to predict threats months before they are released, providing powerful predictive protection previously unavailable to small and midsize businesses. Automation – WatchGuard’s new tabletop appliances are built with automation at their core to enable IT departments, security teams and MSPs to do more with less. Users can deploy T Series appliances from the cloud, update threat signatures, detect and eliminate malware and more – all through automation-enabled processes. “WatchGuard Firebox T Series firewalls offer a versatile security appliance that's well-suited to deployments in homes, and small to medium-size office environments,” said Dean Calvert, CEO of Calvert Technologies. “They offer a remarkable range of security features, intuitive management, and throughput your users need to keep up with the pace of business.” For more information on availability, support and migration paths for WatchGuard products, click here: https://www.watchguard.com/wgrd-resource-center/end-of-life-policy ADDITIONAL MATERIALS: Firebox T Series Webpage: https://www.watchguard.com/wgrd-products/tabletop/t-series WatchGuard Appliance Sizing Tool: https://www.watchguard.com/wgrd-resource-center/watchguard-appliance-sizing-tool About WatchGuard Technologies, Inc. WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 10,000 security resellers and service providers to protect more than 80,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter:@ WatchGuard, on Facebook (https://www.facebook.com/watchguardtechnologies) or on the Linkedin Company page (https://www.linkedin.com/company/watchguard-technologies/). Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at: http://www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at: https://www.secplicity.org or wherever you find your favourite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. WatchGuard Technologies Completes Acquisition of Panda Security 2020-06-03T00:14:58Z watchguard-technologies-completes-acquisition-of-panda-security SEATTLE and MADRID – June 2, 2020 – WatchGuard Technologies, a leading global provider of network security and intelligence, secure Wi-Fi and multi-factor authentication, today announced that it has closed the acquisition of the advanced endpoint protection provider, Panda Security. WatchGuard announced the signing of a definitive agreement to purchase Panda in March 2020. Panda is now a wholly-owned subsidiary of WatchGuard, and the combined company will enable its current and future customers and partners to consolidate their fundamental security services for protection from network to endpoint under a single company. “Our customers and partners need access to enterprise-grade security built for the unique needs and requirements of the midmarket. WatchGuard is focused on delivering these security services via an MSP-focused security platform that simplifies every aspect of security delivery, and solidifying our position as the de facto security solution for the midmarket,” said Prakash Panjwani, CEO of WatchGuard Technologies. “The completed acquisition of Panda Security, and the subsequent integration of its portfolio into WatchGuard Cloud, represents a significant milestone for the company and will result in both immediate and long-term benefits for our customers and partners that will address common challenges with security complexity, rapidly changing network topologies, purchasing models, and more.” The immediate focus of the combined company is to provide partners and customers from both companies access to the newly expanded portfolio of security solutions. Once the portfolios are integrated partners and customers will benefit from advanced threat detection and response functionality fuelled by modern AI capabilities, behaviour profiling techniques, and cutting-edge security event correlation, as well as additional operational benefits such as a centralised management across network and endpoint security. Panda Security Early Access Program WatchGuard resellers will enjoy immediate access to Panda Adaptive Defense 360, which includes both endpoint protection platform (EPP) and endpoint detection and response (EDR) capabilities, and Advanced Reporting Tool products via the Panda Security Early Access Program launching on June 1, 2020. This new program will put these exciting new products into the hands of WatchGuard partners quickly for training and internal deployment, as well as resale to end users. “We believe that Panda’s people and technology were the perfect fit for WatchGuard’s culture and goals,” said Panjwani. “Working together through the final stages of a major acquisition and kicking off integration efforts during a global pandemic has been a unique experience. Though we’ve been physically separated while working from home, the shared experience has brought us closer together faster, and has further validated that WatchGuard and Panda will be a powerful combination.” “I’m happy to join WatchGuard’s board of directors, and to continue advising on daily operations to help build an integrated company that provides the industry’s best security solution from network to endpoint,” said Juan Santamaria Uriarte, CEO of Panda Security. “In its 30 years as a company, Panda has developed a strong culture of passion, dedication and commitment of excellence to our customers and each other. WatchGuard’s culture and focus mirrors our own, and as we begin a new chapter as members of the WatchGuard team, I’m excited by all that we’ll accomplish together.” As part of the transaction, Investing Profit Wisely (IPW) will join Vector Capital and Francisco Partners as a shareholder in WatchGuard Technologies. Juan Santamaria Uriarte will join the WatchGuard board of directors. WatchGuard was represented in the transaction by Paul Hastings LLP and Cuatrecasas, Gonçalves Pereira LLP. Additionally, Jefferies International acted as sole financial advisor to Panda Security, and Uría Menéndez acted as legal advisor to the sellers of Panda Security in this transaction. Additional Information: WatchGuard Technologies and Panda Security: One Giant Leap for Internet Security: https://www.watchguard.com/wgrd-products/endpoint/epp-edr About WatchGuard Technologies, Inc. WatchGuard Technologies, Inc. is a leading global provider of network security, secure Wi-Fi, multi-factor authentication and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 10,000 security resellers and service providers to protect more than 80,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter: @WatchGuard, on Facebook (https://www.facebook.com/watchguardtechnologies) or on the Linkedin Company page: https://www.linkedin.com/company/watchguard-technologies/ Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at: http://www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at Secplicity.org: https://www.secplicity.org or wherever you find your favourite podcasts. About Francisco Partners Francisco Partners is a leading global private equity firm that specialises in investments in technology and technology-enabled businesses. Since its launch 20 years ago, Francisco Partners has raised approximately US $24 billion in committed capital and invested in more than 275 technology companies, making it one of the most active and longstanding investors in the technology industry. The firm invests in opportunities where its deep sectoral knowledge and operational expertise can help companies realise their full potential. For more information on Francisco Partners, please visit: http://www.franciscopartners.com About Vector Capital Vector Capital is a leading global private equity firm specialising in transformational investments in established technology businesses. With approximately US $4 billion of capital under management, Vector actively partners with management teams to devise and execute new financial and business strategies that materially improve the competitive standing of businesses and enhance value for employees, customers, and all stakeholders. For more information, visit http://www.vectorcapital.com About Panda Security Celebrating its 30th anniversary in 2020, Panda Security is a leading global provider of advanced cybersecurity solutions. The company offers a full portfolio of user-centric security products and services for protecting people, devices, and the networks they connect to from malicious websites, malware, spam, and other targeted attacks. With offerings for businesses and consumers alike, Panda Security offers advanced endpoint protection, sophisticated threat hunting services, and more. Designed for maximum protection with minimal complexity, the company packages its robust portfolio of security services to take the guesswork out of endpoint security. Prior to its acquisition by WatchGuard Technologies, Panda was owned by Investing Profit Wisely (IPW), a Spain-based investment company focused exclusively on software publishing companies. About Investing Profit Wisely Investing Profit Wisely (IPW) is an investment firm focused on private and public stakes in growth-oriented software companies. As one of Spain’s leading technology investment firms, IPW leverages its deep investing and operational expertise to implement strategic transformations, grow the top-line by deepening penetration in existing market segments, and expand market presence into new verticals and markets across its portfolio companies. For more information, visit www.ipw.es WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. WatchGuard Technologies to Acquire Panda Security, Extending Simplified Security from Network to Endpoint 2020-03-09T06:31:40Z watchguard-technologies-to-acquire-panda-security-extending-simplified-security-from-network-to-endpoint SEATTLE and MADRID – March 9, 2020 – WatchGuard Technologies, a leading global provider of network security and intelligence, secure Wi-Fi and multi-factor authentication, today announced that it has entered into a definitive agreement to acquire Panda Security, a leading global provider in advanced endpoint protection. Once the integration is complete, our joint customer and partner community will benefit from a powerful security platform that bridges the network and user perimeter, touting the same combination of innovative security features, and simplified packaging, deployment and management capabilities that both companies are known for today. For over 20 years, WatchGuard has led the industry in developing innovative solutions that simplify the delivery and management of advanced enterprise-grade network security, delivered to midmarket enterprises via a strong global ecosystem of partners. The company proudly offers the single-SKU delivery of a full stack of advanced network security solutions, including GAV, IPS, VPN, sandboxing, and advanced threat detection, correlation, and response. Under its current leadership team, WatchGuard has continued to deliver on its vision of providing a complete security portfolio of products and services that protect users both inside and beyond the network perimeter, including secure Wi-Fi solutions, multi-factor authentication, and now most recently, user-friendly security services. The acquisition of Panda Security fuels that vision and expands the company’s portfolio of user-centric threat detection and response products and services. “Businesses today face an increasingly sophisticated and evolving threat landscape, scarcity of trained security professionals, and an increasingly porous perimeter. As a result, network security, advanced endpoint protection, multi-factor authentication, secure networking, and threat detection and response capabilities are consistently ranked as top security investment areas by IT decision-makers and IT solution providers who serve them,” said Prakash Panjwani, CEO of WatchGuard. “By bringing the companies together, we enable our current and future customers and partners to consolidate their fundamental security services under a single brand, backed by the innovation and quality that is a core part of both companies’ DNA.” Panda Security has spent the last 30 years revolutionising the advanced endpoint protection space for businesses and consumers alike. Uniquely powered by a combination of automated, AI-driven processes and security analyst-led investigation services, Panda Security was the first endpoint protection platform (EPP) vendor to offer a 100% attestation service, certifying the legitimacy and safety of all running applications. The company also recently launched a sophisticated threat hunting service available for direct enterprise consumption and for Managed Security Service Providers (MSSPs) who resell Panda Security services. “In the short term, the acquisition of Panda Security makes best-in-class endpoint detection and response, threat hunting, endpoint AV, email security, patching, and data compliance and encryption accessible to our customer base through a trusted vendor and their IT solution provider of choice,” continued Panjwani. “Longer term, our customers and partners will enjoy the additional benefits that come from these solutions being tightly integrated with the core WatchGuard offering.” “We are thrilled to merge with WatchGuard because of the new scale and portfolio access it provides to our customers and partners,” said Juan Santamaria Uriarte, CEO of Panda Security. “We are also excited to see our innovative product portfolio be delivered via WatchGuard’s strong global network of partners. Together, we look forward to building a security platform that bridges the network and user perimeter, with capabilities that are unmatched in the cybersecurity market.” The transaction is subject to customary closing conditions, including regulatory approvals, and is expected to close in Q2 2020. WatchGuard was represented in the transaction by Paul Hastings LLP and Cuatrecasas, Gonçalves Pereira LLP. About WatchGuard Technologies, Inc. WatchGuard Technologies, Inc. is a leading global provider of network security, secure Wi-Fi, multi-factor authentication and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 10,000 security resellers and service providers to protect more than 80,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter (@WatchGuard) on Facebook (https://www.facebook.com/watchguardtechnologies) or on the Linkedin Company page (https://www.linkedin.com/company/watchguard-technologies). Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at: www.secplicity.org. Subscribe to The 443 – Security Simplified podcast at Secplicity.org, Subscribe to The 443 – Security Simplified podcast at Secpilitiy.org (https://www.secplicity.org/category/the-443) or wherever you find your favourite podcasts. About Panda Security Celebrating its 30th anniversary in 2020, Panda Security is a leading global provider of advanced cybersecurity solutions. The company offers a full portfolio of user-centric security products and services for protecting people, devices, and the networks they connect to from malicious websites, malware, spam, and other targeted attacks. With offerings for businesses and consumers alike, Panda Security offers advanced endpoint protection, sophisticated threat hunting services, and more. Designed for maximum protection with minimal complexity, the company packages its robust portfolio of security services to take the guesswork out of endpoint security. WatchGuard Recognised as a 2020 Gartner Peer Insights Customers¹ Choice for Network Firewalls 2020-01-28T06:39:20Z watchguard-recognised-as-a-2020-gartner-peer-insights-customers1-choice-for-network-firewalls SEATTLE – January 23, 2020 –WatchGuard® Technologies, a global leader in network security and intelligence, secure Wi-Fi and multi-factor authentication, today announced it has been named a 2020 Gartner Peer Insights Customers’ Choice for Network Firewalls. This Customers' Choice distinction is based on feedback and ratings from end-user professionals that have experience purchasing, implementing and/or using WatchGuard products. “At WatchGuard, we pride ourselves on the success we’ve had in not only continuing to deliver innovative new security solutions to the market year after year, but also simplifying how they’re deployed and managed,” said Michelle Welch, senior vice president of marketing at WatchGuard. “We believe that being recognised as a 2020 Customers’ Choice for Network Firewalls is yet another proof point that these efforts are making a tremendous difference for our customers and partners. We couldn’t be more excited to continue meeting their needs and exceeding their expectations in this new decade.” Here are some excerpts from customer reviews that contributed to the distinction: ·“WatchGuard; hands down the most reliable and robust feature set for the money!”: Lead Senior Systems Analyst in the Manufacturing Sector: (https://www.gartner.com/reviews/market/network-firewalls/vendor/watchguard/product/firebox/review/view/1058217) ·“WatchGuard has excellent support and products.” – Network Engineer in the Finance Sector: (https://www.gartner.com/reviews/market/network-firewalls/vendor/watchguard/product/firebox/review/view/888117) ·“All the features and it’s easy to manage.” IT Manager in the Manufacturing Sector: (https://www.gartner.com/reviews/market/network-firewalls/vendor/watchguard/product/firebox/review/view/695202) To read Gartner’s Peer Insights feedback for WatchGuard, click here: https://www.gartner.com/reviews/market/network-firewalls/vendor/watchguard/product/firebox About Peer Insights: Peer Insights is an online platform of ratings and reviews of IT software and services that are written and read by IT professionals and technology decision-makers. The goal is to help IT leaders make more insightful purchase decisions and help technology providers improve their products by receiving objective, unbiased feedback from their customers. Gartner Peer Insights includes more than 215,000 verified reviews in more than 340 markets. For more information, please visit: www.gartner.com/reviews/home <http://www.gartner.com/reviews/home. Gartner Peer Insights Customers’ Choice constitute the subjective opinions of individual end-user reviews, ratings, and data applied against a documented methodology; they neither represent the views of, nor constitute an endorsement by, Gartner or its affiliates. About WatchGuard Technologies, Inc. WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 10,000 security resellers and service providers to protect more than 80,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter: @WatchGuard, on Facebook <https://www.facebook.com/watchguardtechnologies> or on the LinkedIn Company <http://www.linkedin.com/company/watchguard-technologies> page. Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at www.secplicity.org <https://www.secplicity.org/category/the-443/> . Subscribe to The 443 – Security Simplified podcast <https://www.secplicity.org/category/the-443/> at Secplicity.org <http://www.secplicity.org/> , or wherever you find your favourite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. ENDS New Research: Equifax Breach Vulnerability Surfaces as Top Network Attack in Q3 2019 2019-12-13T03:42:09Z new-research-equifax-breach-vulnerability-surfaces-as-top-network-attack-in-q3-2019 Sydney, 13 December – WatchGuard® Technologies, a global leader in network security and intelligence, secure Wi-Fi and multi-factor authentication, today announced the release of its Internet Security Report for Q3 2019. Amid significant increases in both malware and network attacks, multiple Apache Struts vulnerabilities – including one used in the devastating Equifax data breach – appeared for the first time on WatchGuard’s list of the most popular network attacks in Q3 2019. The report also highlights a major rise in zero day malware detections, increasing use of Microsoft Office exploits and legitimate penetration testing tools, and more. “Our latest threat intelligence showcases the variability and sophistication of cyber criminals’ growing playbook. Not only are they leveraging notorious attacks, but they’re launching evasive malware campaigns and hijacking products, tools and domains we use every day,” said Corey Nachreiner, chief technology officer at WatchGuard Technologies. “As threat actors continue to modify their tactics, organisations of every size must protect themselves, their customers and their partners with a set of layered security services that cover everything from the core network to endpoints to the users themselves.” WatchGuard’s Internet Security Report arms businesses with the data, trends, research and defensive advice they need to better understand today’s security landscape and remain vigilant and protected against emerging threats. Here are several key findings from the Q3 2019 report: New network attack targets major vulnerability used in Equifax data breach – Debuting on WatchGuard’s list of top ten most popular network attacks, Apache Struts 2 Remote Code Execution enables attackers to install Python or make a custom HTTP request to exploit the vulnerability with just a few lines of code and obtain shell access to an exposed system. This threat was accompanied by two additional Apache Struts vulnerabilities on the top ten network attacks list in Q3, as overall network attacks increased in volume by 8%. The massive fallout from the Equifax breach put the severity of this vulnerability on full display and should serve as a reminder of how important it is for web admins to patch known flaws as soon as possible. Attackers continue to favor Microsoft Office exploits – Two malware variants affecting Microsoft Office products made WatchGuard’s top ten list of malware by volume, as well as the top ten most-widespread malware list last quarter. This indicates that threat actors are doubling down on both the frequency with which they leverage Office-based attacks, as well as the number of victims they’re targeting. Both attacks were primarily delivered via email, which highlights why organisations should increasingly focus on user training and education to help them identify phishing attempts and other attacks leveraging malicious attachments. Zero day malware instances spike to 50%, as overall malware detections rise – After stabilizing at around 38% of all malware detections over the past several quarters, zero day malware accounted for half of all detections in Q3. The overall volume of malware detected increased by 4% compared to Q2 2019, with a massive 60% increase over Q3 2018. The fact that half of malware attacks in Q3 were capable of bypassing traditional signature-based solutions illustrates the need for layered security services that can protect against advanced, ever-evolving threats. Cyber criminals may be leveraging legitimate pentesting tools for attacks – Two new malware variants involving Kali Linux penetration testing tools debuted on WatchGuard’s top ten list of malware by volume in Q3. The first was Boxter, a PowerShell trojan used to download and install potentially unwanted programs onto a victim’s device without consent. The second was Hacktool.JQ, which represents the only other authentication attack tool besides Mimikatz (which dropped in prevalence by 48% compared to Q2, and 16% compared to Q3 2018) to make the list. It’s unclear whether the rise in these detections comes from legitimate pentesting activities or malicious attackers leveraging readily available open source tools. Organisations must continue to leverage anti-malware services to prevent data theft. Malware attacks targeting the Americas increase drastically – More than 42% of all malware attacks in Q3 2019 were aimed at North, Central and South America; up from just 27% in Q2. This represents a significant geographic shift in focus for attackers compared to last quarter, as EMEA and APAC (which were tied for the top regional malware target in Q2) accounted for 30% and 28% of all malware attacks in Q3, respectively. Although the specific motivations are unclear, this trend indicates attackers are bringing new malware campaigns online that specifically target users in the Americas region. The findings included in WatchGuard’s Internet Security Report are drawn from anonymised Firebox Feed data from active WatchGuard UTM appliances whose owners have opted in to share data to support the Threat Lab’s research efforts. Today, nearly 37,000 appliances worldwide contribute threat intelligence data to the report. In Q3 2019, they blocked over 23,000,000 malware variants in total (623 samples each) and nearly 2,400,000 network attacks (65 per device). The complete report lays out the industry’s most impactful malware and network attack trends, DNSWatch data on the quarter’s top malicious domains associated with malware, compromised websites and phishing links, an analysis of Kazakhstan’s HTTPS decryption campaign, and key defensive best practices that organisations of all sizes can use to protect themselves in today’s threat landscape. Analysis of Kazakhstan’s Nation-wide HTTPS Decryption Campaign The report includes an in-depth breakdown of Kazakhstan’s decision to begin intercepting and decrypting all HTTPS traffic inside its borders in Q3. WatchGuard’s Threat Lab details the ins and outs of HTTPS encryption and decryption, similar programs launched by other countries, the role of HTTPS encryption in enterprise network security, and best practices every organization should take away from this example. For more information, download the full report here: https://www.watchguard.com/wgrd-resource-center/security-report-q3-2019 About WatchGuard Technologies, Inc. WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 10,000 security resellers and service providers to protect more than 80,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter @WatchGuard, on Facebook (https://www.facebook.com/watchguardtechnologies) or on the LinkedIn Company page (http://www.linkedin.com/company/watchguard-technologies). Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at www.secplicity.org. Subscribe to The 443 – Security Simplified podcast (https://www.secplicity.org/category/the-443) at Secplicity.org (http://www.secplicity.org), or wherever you find your favorite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. ### ENDS WatchGuard Brings Secure Wi-Fi to the Outdoors with New Ruggedised Wi-Fi Access Point 2019-11-06T01:54:35Z watchguard-brings-secure-wi-fi-to-the-outdoors-with-new-ruggedised-wi-fi-access-point Sydney – November 6, 2019 – WatchGuard® Technologies, a global leader in network security and intelligence, secure Wi-Fi, and multi-factor authentication, today announced the release of a new cloud-managed outdoor Wi-Fi access point (AP), the AP327X. The ruggedised enclosure and external antenna connectors enable the WatchGuard AP327X to thrive in extreme conditions such as snow, rain, and dust; or in locations that require flexible antenna pattern coverage capabilities. The AP327X is ideal for delivering secure outdoor Wi-Fi coverage to school campuses, warehouses, manufacturing yards, malls, public hotspots, and municipal deployments. Extend Your Trusted Wireless Environment to the Outdoors WatchGuard is the only company that offers a framework – called a Trusted Wireless Environment – for building a complete Wi-Fi network that is fast, easy to manage, and most importantly, secure. This initiative focuses on enabling companies to offer and deploy Wi-Fi networks with market-leading performance, scalable management, and verified comprehensive security. By focusing on providing secure Wi-Fi access, WatchGuard has distinguished itself in the market by automatically detecting and preventing all of the most common Wi-Fi threats simultaneously. With the introduction of the AP327X, WatchGuard enables our customers and partners to push beyond previous challenges to creating secure Wi-Fi deployments in outdoor environments. The AP327X adds four N-Type connectors for flexible antenna pattern coverage capabilities. It is an IP67-rated AP that is made for harsh conditions. Also, the AP327X is an 802.11ac 2x2 MU-MIMO access point with dual concurrent 5 GHz and 2.4 GHz band radios and data rates up to 867 GHz and 400 Mbps respectively. Key Capabilities: Four N-Type external antenna connectors: Delivers more flexibility for Wi-Fi network designers to implement directional or omni-directional signal patterns when needed. Ruggedised enclosure: Thrives in harsh conditions (-20oC to 65oC or -4oF to 149oF). Dual concurrent 2x2 5 GHz and 2.4 GHz band radios with data rates of up to 867 Mbps and 400 Mbps, respectively:Includes two radios so both 2.4 GHz and 5 GHz clients are served simultaneously. Radio Resource Management (RRM) in cloud mode: Dynamic RF optimisation through smart steering, band steering, and optimal channel selection ensures peak Wi-Fi performance and user experience. 2x Gigabit Ethernet ports: Enables networking administrators with the flexibility to plug into the 2nd Ethernet port and continue into a switch or other networking device. Cloud-based network baselining and troubleshooting: Wi-Fi Cloud baselines network traffic and automatically highlights anomalies by triggering alerts to network admins for resolving issues before users report them. Wi-Fi security overlay to any Wi-Fi deployment: No need to rip and replace — deploy WatchGuard APs to existing Wi-Fi deployments. When deployed as dedicated Wirelsss Intrusion Prevention Systems (WIPS) security sensors, the AP works with your existing APs and deliver 24/7 protection from wireless threats. Flexible management options: When you deploy an access point that has WatchGuard Wi-Fi Cloud enabled with a Secure Wi-Fi or Total Wi-Fi license, you unlock the full potential of your WatchGuard access points with powerful Wireless Intrusion Prevention System (WIPS), real-time analytics, and valuable engagement and marketing tools. For a lightweight feature set, manage any one of our APs with a Firebox via a Basic Wi-Fi license. “We are proud to add the AP327X to WatchGuard’s family of ruggedised cyber security solutions,” said Ryan Orsi, director of product management, Wi-Fi, at WatchGuard. “With its ruggedised enclosure, and support for a variety of external antennas, this AP brings our customers and partners peace of mind knowing that a harsh environment is no longer an excuse to limit secure access to the internet.” The AP327X is available for purchase today. Learn more: AP327X Product Page: https://www.watchguard.com/wgrd-products/access-points/ap327 AP327X Datasheet: https://www.watchguard.com/wgrd-resource-center/docs/ap327x-en AP327X Dipole Antenna Datasheet: https://www.watchguard.com/wgrd-resource-center/docs/ap327x-dipole-antennas-en Whitepaper: Trusted Wireless Environment: https://www.watchguard.com/wgrd-resource-center/white-paper/trusted-wireless-environment-en About WatchGuard Technologies, Inc. WatchGuard® Technologies, Inc. is a global leader in network security, secure Wi-Fi, multi-factor authentication, and network intelligence. The company’s award-winning products and services are trusted around the world by nearly 10,000 security resellers and service providers to protect more than 80,000 customers. WatchGuard’s mission is to make enterprise-grade security accessible to companies of all types and sizes through simplicity, making WatchGuard an ideal solution for midmarket businesses and distributed enterprises. The company is headquartered in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America. To learn more, visit WatchGuard.com. For additional information, promotions and updates, follow WatchGuard on Twitter @WatchGuard, on Facebook (https://www.facebook.com/watchguardtechnologies) or on the LinkedIn Company page (http://www.linkedin.com/company/watchguard-technologies). Also, visit our InfoSec blog, Secplicity, for real-time information about the latest threats and how to cope with them at: https://www.secplicity.org/category/the-443. Subscribe to The 443 – Security Simplified podcast (https://www.secplicity.org/category/the-443) at Secplicity.org or wherever you find your favourite podcasts. WatchGuard is a registered trademark of WatchGuard Technologies, Inc. All other marks are property of their respective owners. ###