A segurança Cloud está sob pressão constante à medida que as ciberameaças se tornam cada vez mais sofisticadas. Em média, uma organização bloqueia 35 ameaças baseadas em correio eletrónico por cada 1000 emails diários, enquanto se espera que as despesas globais em soluções de cibersegurança ultrapassem os 300 mil milhões de dólares até 2026. Para os principais fornecedores de segurança na nuvem, equilibrar o elevado rendimento com a deteção precisa de ameaças é fundamental para manter a confiança do cliente e a eficiência operacional.
Um fornecedor global de soluções de segurança baseadas na nuvem, sediado nos EUA, enfrentou este desafio de frente. Processando milhões de arquivos diariamente em suas plataformas de segurança de e-mail e web, eles tiveram dificuldades com a escalabilidade e a relação custo-benefício das ferramentas tradicionais de sandboxing. As soluções existentes tornavam-se mais lentas com grandes volumes de ficheiros de produtividade - como PDFs, documentos do Office e anexos de imagens - prejudicando a sua capacidade de acompanhar as crescentes exigências dos clientes.
Enter OPSWAT’s MetaDefender Aether: an adaptive, emulation-based malware analysis solution built to meet the speed, accuracy, and scalability demands of modern cloud environments. By integrating this next-gen technology, the company drastically reduced file processing times, enhanced detection accuracy, and cut operational costs—all while maintaining their commitment to exceptional cloud security.
Requisitos para a nova solução
A empresa não teve de chegar a conclusões por si só; com a ajuda da experiência e do apoio consultivo da OPSWAT, não só obtiveram uma melhor compreensão da forma como os seus desafios se dividiam, como também permitiram que a OPSWAT adaptasse verdadeiramente a solução para responder a esses desafios:
- Escalabilidade para lidar com tráfego diário e volumes de pico em várias regiões geográficas.
- Eficiência de custos para evitar os custos proibitivos associados às soluções de sandboxing baseadas em VM.
- Precisão e rapidez no tratamento de ficheiros de produtividade, como PDF, ficheiros do Office e anexos de imagens, com deteção rápida de ameaças e um mínimo de falsos positivos.
- Compatibilidade comCloud para uma fácil integração no ambiente AWS existente da empresa.
While the company explored various alternatives first, they ultimately decided to trial MetaDefender Aether from OPSWAT.
Precisávamos de uma solução que pudesse ser dimensionada para satisfazer as nossas crescentes exigências, mantendo os custos sob controlo. O sandboxing tradicional era eficaz, mas tornou-se insustentável à medida que as nossas necessidades de processamento de dados aumentavam.
Chefe de operações de segurança
Implementação da análise de malware de próxima geração
MetaDefender Aether was seamlessly integrated into the customer’s cloud-based pipeline to identify and block threats in email and web traffic. Leveraging multiple layers of analysis, including static, dynamic, and reputation checks, the sandbox quickly identifies threats in common attachment types such as PDFs, Office files, and images. The emulation-based approach enables the company to bypass resource-heavy VM analysis for over 80% of incoming files, reducing average scan times from several minutes to under 20 seconds—a time savings of over 70%. Additionally, this shift has led to a significant reduction in cloud processing costs, cutting operational expenses associated with VM-based sandboxing by approximately 60%.
Estas melhorias tangíveis não só melhoraram as suas capacidades de deteção de ameaças, como também proporcionaram uma eficiência mensurável e poupanças de custos à escala.
Integrating MetaDefender Aether into our pipeline was seamless. We were able to reduce analysis times dramatically, handling most files in under 20 seconds. This improvement allowed our team to focus on more critical threats, rather than getting bogged down by routine analysis.
Chefe de operações de segurança
Implantação
One of the key aspects of their decision, the company was able to quickly and easily integrate MetaDefender Aether with their existing cloud-based in an AWS environment. With strict data privacy and security protocols, the company successfully integrated MetaDefender Aether directly into its cloud processing pipeline, adding it as a quick, dynamic analysis step that streamlined threat detection without compromising accuracy. This multi-layered approach involved the following sequential analysis stages:
- Motores antivírus: Conduzir uma análise estática rápida.
- MetaDefender Aether: Provides a fast dynamic analysis, identifying potential threats with a verdict that quickly allows or restricts files.
This configuration enabled MetaDefender Aether to process the majority of files quickly, with only a small percentage moving to the slower VM-based sandbox if flagged for further investigation. The system was optimized for productivity files, the most common in business environments, significantly reducing the cost of threat analysis.
OPSWATA equipa de engenheiros da empresa deu um apoio incrível durante o processo de implementação, trabalhando em estreita colaboração com as nossas equipas internas para colocar o sistema em funcionamento rapidamente. A sua flexibilidade e experiência foram inestimáveis para garantir uma transição suave.
Chefe de operações de segurança
Principais resultados
Since implementing MetaDefender Aether, the cybersecurity provider has achieved substantial improvements in performance, scalability, and cost-effectiveness, benefiting from:
- High Throughput: Processing up to 250,000 files per day in four AWS regions, MetaDefender Aether supports global scale with consistent performance and fast scan times (averaging 20 seconds per file).
- Cost Savings: With MetaDefender Aether reducing the reliance on costly VM-based sandboxes, the company has seen substantial reductions in their operational costs.
- Enhanced Detection Accuracy: False positives have decreased, with MetaDefender Aether leveraging machine learning to self-correct over time. This capability has allowed the company to maintain high detection efficacy with minimal manual intervention.
- Eficiência melhorada: A empresa bloqueia agora as ameaças mais cedo no seu pipeline, reservando a análise baseada em VM apenas para ficheiros de alto risco, o que resulta em tempos de processamento gerais mais rápidos e numa carga de trabalho manual reduzida para os analistas de segurança.
- Increased Productivity: MetaDefender Aether’s faster threat detection freed up valuable time for the company’s security analysts, greatly reducing their overall workload.
By reducing our reliance on VM-based sandboxing, we cut costs by over 80%. MetaDefender Aether provided a faster, more accurate detection layer that didn’t sacrifice security performance, even at peak volumes
Chefe de operações de segurança
The company also reported that deployment and scaling efforts were supported effectively by OPSWAT’s engineering team, who collaborated closely with their in-house DevOps and security engineers to deploy MetaDefender Aether under a compressed timeline.
The reduction in false positives has been a game-changer for our analysts. MetaDefender Aether’s accuracy allowed us to maintain high detection efficacy with minimal manual intervention, improving our team’s overall efficiency.
Chefe de operações de segurança
Um amanhã mais Secure
Following the success of MetaDefender Aether, the company is exploring additional use cases and plans to expand its integration across more products in their portfolio. They’ve seen the impact of MetaDefender Aether as a powerful anti-malware solution that enables more efficient analysis of incoming threats and are now considering deploying it across other business units. This expansion offers the potential to further amplify cost savings, operational efficiency, and scalability, as the solution continues to streamline threat detection across an increasing volume of files and diverse workflows.
With MetaDefender Aether, the cybersecurity leader can confidently provide customers with faster and more accurate protection against email and web-based threats, while reducing the operational complexities and costs traditionally associated with VM-based sandboxing. Their investment in OPSWAT’s solution reflects a commitment to maintaining a high-performance security stack that can evolve and scale as cybersecurity threats continue to grow. Looking ahead, the company anticipates that the broader implementation of MetaDefender Aether will unlock additional efficiencies and drive sustained cost reductions, ensuring they remain agile in addressing future challenges.
MetaDefender Aether has proven to be an essential part of our security stack, allowing us to scale up quickly as threat volumes increase. We’re excited to expand its use across more of our products, giving our customers even stronger protection against emerging threats.
Chefe de operações de segurança
Experimente o poder das capacidades de análise de malware do OPSWATgratuitamente - obtenha acesso gratuito a ferramentas avançadas de análise de ameaças e a informações exclusivas sobre cibersegurança juntando-se à comunidade filescan.io.
