Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Web Isolation 101: Securing Web Apps against data exfiltration and shielding corporate endpoints from web-borne threats

10 views

Published on

Alex Negrea in Bucharest, Romania on November 8-9th 2018 at DefCamp #9.

The slides and other presentations can be found on https://def.camp/archive

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Web Isolation 101: Securing Web Apps against data exfiltration and shielding corporate endpoints from web-borne threats

  1. 1. © 2018 Appsulate, Inc. Web Isolation 101Secure your Web Apps against data exfiltration and shield corporate endpoints from attacks coming from the web Alex Negrea Co-Founder & CTO @ Appsulate
  2. 2. © 2018 Appsulate, Inc. PROBLEM Undesired Interaction between web and endpoint Remote Users Cloud apps Web ContentInternal Users Attacks from malicious code Regulated data stays behind
  3. 3. © 2018 Appsulate, Inc. WHY IS THIS A BIG PROBLEM? Attacks often start from the edge of the enterprise exploiting contractors as the weakest link Liability under HIPAA/GDPR for data breaches of contractors/employees - with hefty fines Financial loss due to inadvertent disclosure of intellectual property Compliance Security IP Protection
  4. 4. © 2018 Appsulate, Inc. SOLUTION Appsulate is a shield between the web and endpoint Remote Users Cloud apps Only Pixels Security Compliance Visibility NO BYPASSING Web contentInternal Users Only Pixels
  5. 5. © 2018 Appsulate, Inc. How can Web isolation help you ? Security ● Prevent Websites from Delivering Zero-day Malware and Phishing Threats to Users’ Devices. Protect instead of detect. ● Avoid over blocking Employees Access to Uncategorized and Risky Sites ● Give Privileged Users Additional Protection From Web-Based Threats ● Defeat Phishing Attacks by Rendering Email Links Harmless ● Prevent Ransomware by Isolating URLs With Potentially Unsafe Risk Profiles
  6. 6. © 2018 Appsulate, Inc. DEMO
  7. 7. © 2018 Appsulate, Inc. Appsulate Bug Bounty Security Total prizes: $1000+ Our contest is centered around 3 major goals: ● Break Appsulate Sandbox and compromise it’s security ● Ability to exfiltrate information from given websites outside of Appsulate ● Ability to bypass authentication and access a shielded application from an untrusted endpoint
  8. 8. © 2018 Appsulate, Inc. THANK YOU

×