Trend Micro and TippingPoint Introduction

Questions and Answers

What is the purpose of the Reputation Feed?

To extract private keys from the network flow

To update the Malware Filter Package

To monitor and block inbound and outbound communications with known malicious and undesirable IP addresses and domain names (correct)

To detect infected hosts communicating in the network

What is the function of DGA Defense filters?

To protect against known malware families and suspicious domain names generated by unknown malware families (correct)

To extract private keys from the network flow

To detect infected hosts communicating in the network

To update the Malware Filter Package

How often is the Malware Filter Package updated?

Monthly

Hourly

Daily

Weekly (correct)

What type of mail traffic does ThreatDV Reputation Feed Context Awareness block?

Mail traffic containing phishing attack techniques

What information does ThreatDV provide through security intelligence feeds?

Malware sites, Phishing sites, Compromised hosts, Botnet and spammers information

What does Ransomware filters utilize a 'trace' action set to do?

Extract a private key from the network flow to restore encrypted files

What is the primary purpose of the Malware Filter Package?

To protect against known malware families and suspicious domain names generated by unknown malware families

What does ThreatDV's Content Awareness aim to detect in mail traffic?

Phishing attack techniques

What is the purpose of TippingPoint Block?

To prevent drive-by downloads of malware from known malware depots

What is the function of a fully qualified domain name (FQDN)?

To identify domain levels including top-level domain and root zone

What does the TippingPoint Reputation Digital Vaccine Service (Rep DV) provide?

IPv4, IPv6, and Domain Name System (DNS) security intelligence feeds

How often is the TippingPoint Reputation Digital Vaccine Service (Rep DV) updated?

~2 hours daily

What does the TippingPoint IPS Platform act as in the security infrastructure?

An enforcement point inspecting traffic in real-time and enforcing Rep DV security policies

What does the TippingPoint Reputation Digital Vaccine Service (Rep DV) assign to each known 'bad' domain name?

A threat score from 0 to 100

What do customers use to actively enforce and manage reputation security policies?

TippingPoint Intrusion Prevention System (IPS) Platform

What is the purpose of blocking sites that use fast-fluxing IP addresses?

To prevent attackers from rapidly changing their server locations

What is the main focus of the ZDI program?

Informing protection updates for customers

What is the primary expertise of the Trend Micro Security Labs research team?

Malware and exploit analysis

How does Trend Micro invest in protecting its customers from threats tomorrow?

By continually innovating the approach to security

What is the role of the ZDI program in relation to Trend Micro?

To help protect customers from vulnerabilities in advance of public disclosure

What is the significance of Microsoft Vulnerability Acknowledgments Since 2006*?

Informing protection updates for Trend Micro's customers

What is the primary benefit to Trend Micro's customers, according to the text?

Investment in people and technology for security innovation

How does the Trend Micro Security Labs team extend its visibility and expertise?

By specializing in malware and exploit analysis