Port company ICTSI protects itself with BlackBerry Cylance technology
Manila-headquartered International Container Terminal Services (ICTSI) has deployed BlackBerry Cylance technology globally to protect thousands of endpoints. ICTSI is leveraging CylancePROTECT to prevent existing and future cyberthreats while unifying its endpoint protection with one vendor across across all business units in Asia, Europe, Europe, Africa and The Americas.
Brian Hibbert, CIO, ICTSI says, “Economies never sleep – but neither do hackers. ICTSI helps to ship goods that power economies around the clock – relying on sophisticated technology for the secure planning and dispatching of every container. Every movement must be on time and secure to deliver the level of reliability we promise: 10 million times per year, twenty-four-seven. Cybersecurity is our priority at ICTSI, and why we need equally sophisticated, AI-driven-technology like BlackBerry Cylance to protect our assets.”
ICTSI has 32 ports in 18 countries and is responsible for ensuring that gateway ports provide the best service so cargo can move unimpeded. Any delay in ICTSI’s operations, physical or cyber, directly impacts local economies. ICTSI required a solution that was efficient, reliable and easy-to-manage on a large scale, while addressing a variety of complex systems and end-points.
The CylancePROTECT solution is deployed by ICTSI across endpoints such as desktops and servers, using artificial intelligence (AI) and machine learning (ML) algorithms to detect, prevent and contain existing and new malware – even when systems are offline. The company chose CylancePROTECT because it was easy to deploy, consumed minimal resources on systems and consistently detected malware and threats that other antivirus (AV) solutions missed.
Evan Davidson, VP of Sales, BlackBerry Cylance APAC said that one of ICTSI's business challenges was a fragmented security strategy using multiple security agents, some free. "It led to a really high degree of risk," he said.
In a demonstration for media a 2015 release of a Blackberry Cylance solution was able to detect a newly-created and disguised version of Wannacry malware that other antivirus software passed as safe. Wannacry came to the world's attention in 2017, and its signature has typically been recognised by endpoint security solutions since then. Disguising the malware led to it being overlooked by competitors' solutions.
ICTSI is now extending its threat prevention capability by rolling out CylanceOPTICS. This pushing all detection and response decisions down to the endpoint, eliminating response latency.
Hibbert added, “With such a diverse portfolio, we found that we had a diverse approach to end-point security. Some sites were using signature-based AV tools, some were using free solutions. Others were using out-of-date technology. This was a huge risk to our organisation in today’s threat climate – so we applied a single unified approach to endpoint security across our portfolio, delivering significant time, complexity and cost savings for our business.”
ICTSI operates in remote locations, including Papua New Guinea. As CylancePROTECT does not require regular software updates, it is ideal for the most challenging environments where reliable connections are not always available. ICTSI IT leaders based in different parts of the world have also found that uncommon software, even installed by privileged users – is automatically scanned and analysed by the solution; and when necessary – quarantined until deemed safe.
Davidson says, "Today, malware mutates daily, even hourly, making signature-based prevention tools obsolete. In mission-critical industries such as shipping and ports, with legacy systems and connected networks and devices, organisations must think beyond traditional antivirus. Together with our channel partner, Nexus Technologies, we are proud to help ICTSI move successfully from a traditional AV model to an AI-driven, preventative approach to threat mitigation with CylancePROTECT – ensuring the company is prepared for the next generation of threats.” AV refers to antivirus.
Lionel Ting, VP for Business Development, Nexus Technologies, said, “Vital industries like ports and maritime play a significant role in global economies – but this unfortunately also makes them a target for cybercriminals. As a leading enterprise reseller in the Philippines, we recognise the need for customers like ICTSI to embrace new technologies like AI and ML to mitigate risk and increase cyber-resiliency in a threat-rich environment. We are proud to partner with BlackBerry Cylance to deliver trusted, next-generation security for ICTSI along with rapid-response support, helping to protect systems so that they can focus on delivering efficient and secure services.”
CylancePROTECT protects endpoints and organisations by combining AI to block malware infections with additional security controls that safeguard against script-based, fileless memory, and external device-based attacks. Fileless attacks are becoming more popular and do not write anything to disk, executing directly from memory instead.
Unlike traditional endpoint security products that rely on signatures and behaviour analysis to detect threats in the environment, CylancePROTECT uses ML, not signatures, to identify and block known and unknown malware from running on endpoints. The software delivers prevention against common and unknown (zero-day) threats without an Internet connection and with minimal impact on system resources.
Brian Hibbert, CIO, ICTSI says, “Economies never sleep – but neither do hackers. ICTSI helps to ship goods that power economies around the clock – relying on sophisticated technology for the secure planning and dispatching of every container. Every movement must be on time and secure to deliver the level of reliability we promise: 10 million times per year, twenty-four-seven. Cybersecurity is our priority at ICTSI, and why we need equally sophisticated, AI-driven-technology like BlackBerry Cylance to protect our assets.”
ICTSI has 32 ports in 18 countries and is responsible for ensuring that gateway ports provide the best service so cargo can move unimpeded. Any delay in ICTSI’s operations, physical or cyber, directly impacts local economies. ICTSI required a solution that was efficient, reliable and easy-to-manage on a large scale, while addressing a variety of complex systems and end-points.
The CylancePROTECT solution is deployed by ICTSI across endpoints such as desktops and servers, using artificial intelligence (AI) and machine learning (ML) algorithms to detect, prevent and contain existing and new malware – even when systems are offline. The company chose CylancePROTECT because it was easy to deploy, consumed minimal resources on systems and consistently detected malware and threats that other antivirus (AV) solutions missed.
Evan Davidson, VP of Sales, BlackBerry Cylance APAC said that one of ICTSI's business challenges was a fragmented security strategy using multiple security agents, some free. "It led to a really high degree of risk," he said.
In a demonstration for media a 2015 release of a Blackberry Cylance solution was able to detect a newly-created and disguised version of Wannacry malware that other antivirus software passed as safe. Wannacry came to the world's attention in 2017, and its signature has typically been recognised by endpoint security solutions since then. Disguising the malware led to it being overlooked by competitors' solutions.
ICTSI is now extending its threat prevention capability by rolling out CylanceOPTICS. This pushing all detection and response decisions down to the endpoint, eliminating response latency.
Hibbert added, “With such a diverse portfolio, we found that we had a diverse approach to end-point security. Some sites were using signature-based AV tools, some were using free solutions. Others were using out-of-date technology. This was a huge risk to our organisation in today’s threat climate – so we applied a single unified approach to endpoint security across our portfolio, delivering significant time, complexity and cost savings for our business.”
ICTSI operates in remote locations, including Papua New Guinea. As CylancePROTECT does not require regular software updates, it is ideal for the most challenging environments where reliable connections are not always available. ICTSI IT leaders based in different parts of the world have also found that uncommon software, even installed by privileged users – is automatically scanned and analysed by the solution; and when necessary – quarantined until deemed safe.
Davidson says, "Today, malware mutates daily, even hourly, making signature-based prevention tools obsolete. In mission-critical industries such as shipping and ports, with legacy systems and connected networks and devices, organisations must think beyond traditional antivirus. Together with our channel partner, Nexus Technologies, we are proud to help ICTSI move successfully from a traditional AV model to an AI-driven, preventative approach to threat mitigation with CylancePROTECT – ensuring the company is prepared for the next generation of threats.” AV refers to antivirus.
Lionel Ting, VP for Business Development, Nexus Technologies, said, “Vital industries like ports and maritime play a significant role in global economies – but this unfortunately also makes them a target for cybercriminals. As a leading enterprise reseller in the Philippines, we recognise the need for customers like ICTSI to embrace new technologies like AI and ML to mitigate risk and increase cyber-resiliency in a threat-rich environment. We are proud to partner with BlackBerry Cylance to deliver trusted, next-generation security for ICTSI along with rapid-response support, helping to protect systems so that they can focus on delivering efficient and secure services.”
CylancePROTECT protects endpoints and organisations by combining AI to block malware infections with additional security controls that safeguard against script-based, fileless memory, and external device-based attacks. Fileless attacks are becoming more popular and do not write anything to disk, executing directly from memory instead.
Unlike traditional endpoint security products that rely on signatures and behaviour analysis to detect threats in the environment, CylancePROTECT uses ML, not signatures, to identify and block known and unknown malware from running on endpoints. The software delivers prevention against common and unknown (zero-day) threats without an Internet connection and with minimal impact on system resources.
Comments
Post a Comment