Palo Alto Networks Advanced Endpoint Protection (Traps)
Traps replaces traditional antivirus with multi-method prevention, a proprietary combination of advanced malware and exploit prevention methods that protect users and endpoints from known and unknown threats.
Multi-Method Malware Prevention
Traps prevents malicious executables rapidly and accurately with a unique, multi-method approach to prevention that maximizes coverage against malware while reducing the attack surface area and increasing the accuracy of malware prevention. This approach combines several prevention methods to instantly block known and unknown malware from infecting a system.
Multi-Method Exploit Prevention
Traps takes a unique approach to preventing exploits. Instead of focusing on the millions of individual attacks or their underlying software vulnerabilities, it focuses on the small set of techniques all exploit-based attacks use, which rarely change. Traps blocks these techniques, thereby preventing exploitation attempts before they can compromise endpoints.
Automatically Convert Threat Intelligence Into Prevention
As an integral component of Palo Alto Networks® Next-Generation Security Platform, Traps continuously exchanges threat intelligence with the WildFire™ threat analysis service, as does each component of the platform deployed among the global community of Palo Alto Networks customers.
WildFire is the world’s largest distributed sensor system focused on identifying and preventing unknown threats, with more than 17,000 enterprise, government and service provider customers contributing to the collective immunity of all other users. Traps customers receive access to this intelligence and WildFire’s complete set of malware analysis capabilities. Traps uses this intelligence to automatically reprogram itself to prevent malware no matter where it is discovered first, be it on the endpoint, in the network or in a SaaS application.
The automatic conversion of threat intelligence into prevention all but eliminates the opportunity for an attacker to use unknown and advanced malware to infect a system. An attacker can use a given piece of malware at most once, anywhere, and only has seconds to carry out an attack before WildFire renders it entirely ineffective.