Invincea, Inc., the leader in advanced endpoint threat protection, again redefined endpoint security today by adding extensive new threat identification and response capabilities to its award-winning secure containerization solution. Invincea Advanced Endpoint Protection 5 uniquely combines containerization technology with advanced endpoint visibility, analysis, and control to provide superior compromise detection and elimination. Most notably, the solution identifies suspicious software processes and applies cloud-based analytics to identify previously unknown compromises.
According to Gartner, Inc., “A detection and response-only strategy is as flawed as a prevention-only strategy. The best future endpoint protection will be provided by endpoint platforms that are capable of providing preventive, detective, responsive and predictive capabilities in an integrated solution.”  Today, Invincea Advanced Endpoint Protection 5 becomes the first unified advanced threat protection solution to contain targeted attacks, identify existing compromises and re-establish control by eradicating malware – all with a single small-footprint integrated agent.
Already trusted by more than 25,000 customers globally, Invincea is an established leader in defeating attack vectors through which most breaches occur – employees clicking on malicious links, visiting compromised websites or opening weaponized documents – all of which regularly evade conventional security controls. The addition of new sensor technology, which works in concert with its cloud-based cyber genome analysis technology, called Cynomix, enables security teams to identify compromised devices that previously evaded detection. Invincea Advanced Endpoint Protection now includes granular escalating controls that empower security staff to isolate suspect processes on endpoints, quarantine compromised devices, and eradicate threats enterprise-wide. Invincea Management, which runs cloud-hosted or on-premise, manages endpoints and allows security teams to selectively publish threats to trusted communities in standard STIX format. As a result, enterprises can dramatically reduce compromise, gain visibility into compromised devices, and regain control over the network to limit adversary movement and damage.
“We chose Invincea to protect our bank against targeted attacks on our employees, including spear-phishing and web-based drive-by attacks. Our enterprise deployment of Invincea has greatly reduced our end user risk exposure,” said Christopher Walsh, FVP and Information Security Officer, Bank Leumi. “Invincea is a key element of our information security strategy, and we estimate it has delivered millions of dollars of value to the bank. Now we are excited to gain full visibility and control over our endpoints with the release of Invincea Advanced Endpoint Protection.”
“Working together, Invincea and Dell are successfully protecting end users and enterprises of all sizes from zero-day exploits and other targeted attacks with the Dell Data Protection | Protected Workspace solution,” said Brett Hansen, executive director, client solutions security and management at Dell. “The release of Invincea’s new detection and response capabilities demonstrates Invincea’s commitment to innovation and will help ensure Dell continues providing the most secure commercial endpoints in the industry.”
Comprised of Invincea Endpoint (formerly Invincea FreeSpace), Invincea Management (formerly Invincea Management Server) and Cynomix, Invincea Advanced Endpoint Protection 5 includes groundbreaking capabilities:
- Secure Virtual Container—The solution protects the most targeted and vulnerable applications (Web browsers, Java, Flash, PDF readers, Office applications) by running them in a secure virtual container. Any attack – whether zero-day or known – is isolated from the host operating system, preventing the adversary from accessing sensitive data or conducting lateral movement in the network. A control interface kills any suspicious processes in the container, while detailed forensic data is captured for analysis.
- Endpoint Sensor to Identify Existing Breaches—The endpoint agent now includes an integrated sensor that identifies suspicious processes already existing on the machine. Unlike detection technologies that flood security teams with alerts and raw data, Invincea Endpoint sends only anomalous events to Invincea Management for further analysis using cloud-based analytics.
- Pluggable Framework for Threat Analysis Services—The solution now includes a framework for easily integrating third-party threat analysis services. Pre-built integrations are included for Cynomix, VirusTotal, Metascan and ReversingLabs; additional services can be added via an open API.
- Cynomix—A DARPA-funded advanced technology built by Invincea Labs, Cynomix uses machine learning techniques to analyze unknown executables and identify maliciousness through their genetic markers. Using a mapping of the cyber genome of millions of pieces of malware, Cynomix identifies new malware strains well before other solutions. Cynomix capabilities are also available free to researchers at Cynomix.org.
“Endpoints are perennially at risk of opening the door to devastating breaches,” said Anup Ghosh, founder and CEO of Invincea. “Traditional endpoint security products contribute to the problem through end user productivity loss and ineffective security. Recent headlines underscore the need to evolve from the reactive paradigm of Prevent, Detect, and Respond to the proactive posture of Contain, Identify, and Control. Invincea Advanced Endpoint Protection is the answer to that challenge.”
Availability and Pricing
Invincea Endpoint 5.0, Invincea Management 3.0, and Cynomix are available immediately. Invincea Endpoint is priced per protected machine and Invincea Management is priced per server instance. Integrated access to Cynomix is included with Invincea Management at no additional cost.
 Gartner Market Guide for Endpoint Detection and Response Solutions, Peter Firstbrook and Neil MacDonald, 13 May 2014
Invincea Blog: http://www.invincea.com/knowledge-center/blogs/
Webinar Series: http://www.invincea.com/upcoming-webinars/
About Invincea, Inc.
Invincea is the leader in advanced endpoint threat protection for enterprises worldwide. The company provides the most comprehensive solution to contain, identify, and control the advanced attacks that evade legacy security controls. Invincea protects enterprises against targeted threats including spear-phishing and Web drive-by attacks that exploit Java, Flash, and other applications. Combining the visibility and control of an endpoint solution with the intelligence of cloud analysis, Invincea provides the only market-deployed solution that defends against 0-day exploits, file-less malware, and previously unknown malware. The company is venture capital-backed and based in Fairfax, VA. For more information, visit http://www.invincea.com.