FILE PROTECTION | SALESFORCE ANTIVIRUS
Advanced threat protection against malware and ransomware
Multiple antivirus engines, AI, global threat intelligence, cloud sandboxing… say goodbye to malware on Salesforce
Traditional security solutions like firewalls and conventional antivirus systems are no longer sufficient against today’s advanced cyber threats. These threats demand a more proactive and dynamic approach, one that includes real-time detection and response powered by advanced technologies like sandboxing, heuristics analysis and AI. Additionally, you need to detect threats right at the threat vector, like Salesforce cloud, not just on the endpoints as your last line of defense.
Dynamic protection identifies even previously unknown attack methods
Fast detection and response reduces the damage and window of vulnerability
Security visibility and recommended steps empowers security teams to react swiftly
100% effective against both commodity and zero-day malware
(AV-TEST)
NextGen AntiVirus for Salesforce
File protection capabilities in WithSecure™ Cloud Protection for Salesforce safeguard your Salesforce environment from sophisticated cyber threats such as malware, ransomware, viruses, and trojans. Our advanced threat protection mechanisms leverage technologies like AI and cloud sandboxing to detect and neutralize threats in real-time.
Users upload content – and introduce risks
Your users can upload malicious files loaded with malware to your Salesforce via forms, emails, or apps, posing cyber risks for your data and operations.
Scan content in real-time
WithSecure™ Cloud Protection for Salesforce scans all files and URLs coming in and going out for threats, keeping data secure within Salesforce.
Only suspicious files are sent for encrypted, anonymous analysis to WithSecure’s threat analysis service.
Respond in an instant
When a threat is detected, your admins are immediately alerted, and the end-user is notified that content was blocked. The end-user is then advised on what to do next, and further use of the content is prevented.
Empower threat hunting
Advanced security analytics with full audit trails speed up your incident response process. Your security team can see what has happened and investigate efficiently.
Under the hood: real-time threat intel meets advanced AI
The hardworking service behind the scenes, WithSecure™ Security Cloud, is a multi-layered, cloud-based cyber threat analysis platform designed to detect modern cybersecurity threats. This platform serves as a dynamic repository of threat data, sourced from millions of endpoints, cloud systems, and IoT devices worldwide. Utilizing advanced algorithms, machine learning, and AI, the platform refines and analyzes data to provide robust security.
Multistep threat analysis process leaves no stone unturned
The WithSecure™ Security Cloud conducts rigorous content analysis to assess each file’s risk. The analysis process begins by computing a file’s digital fingerprint, which is then stored alongside its content and metadata in the Salesforce Cloud threat detection cache. Next, the digital fingerprint is compared against existing cache data to enhance efficiency and user experience by reducing cloud queries. The cache results are regularly updated and expired entries are simultaneously cleared.
Files that lack cache results are analyzed through the WithSecure™ Security Cloud to determine their safety, prevalence, and potential threats. Recognized malicious files are automatically blocked.
Finally, suspicious files flagged as high-risk are further examined through multiple anti-malware engines and sandboxing behavioral analysis, targeting zero-day malware and advanced threats.
Read on to learn more about the technologies behind the detection process.
WithSecure™ Security Cloud analyzes over 8 million files per day
The service processes more than 5 billion client requests daily
Algorithms are constantly tweaked by analysts and new threat data
Detect emerging threats with real-time threat intel
The Security Cloud constantly learns and adapts to emerging threats by harnessing real-time global threat intelligence. It proactively monitors and responds to new threats instantly, ensuring swift and effective protection across all user devices. As the system detects new threats, it updates its database and algorithms continuously. The system updates automatically in the cloud and requires no manual updates.
Additionally, we integrate unique data from our partnerships with Fortune 500 companies to enhance our threat detection capabilities. This collaborative approach enriches our threat database, and as a result provides broader protection in an evolving digital threat landscape.
Uncover zero-day threats with sandboxing threat analysis
Even if initial scans and reputational checks fail to identify a file as malicious, a suspicious profile triggers a deeper investigation. In such cases, the file goes to a securely isolated sandbox environment in Security Cloud. Security Cloud analyses the file in-depth by performing behavioral assessments. This behavior-based threat analysis identifies even highly sophisticated threats like zero-day malware.
WithSecure™ Cloud Protection for Salesforce governs file sandboxing through a proprietary set of rules designed to optimize threat detection. These rules consider a range of indicators within the files, including behavioral patterns and other suspicious activity.
By combining both static and dynamic analysis in antivirus capabilities, we minimize false positives and ensure accurate threat detection on Salesforce. The result is a comprehensive and nuanced understanding of the sample, which significantly enhances our ability to identify and counteract threats.
Detect malicious URLs hiding inside files
File-based threats are not just about malware; malicious URLs can hide inside seemingly harmless files. WithSecure™ Cloud Protection for Salesforce’s next gen antivirus engines scan the contents of files that your users upload to your Salesforce thoroughly, without missing any weblink threats – regardless if they are in Salesforce objects or fields or hidden in files.
Wipe out executables with file type filtering
File type filtering allows you to define policies to keep specific file types or extensions out of your Salesforce. For example, to minimize a risk of a malware breakout, you can block any executables (such as EXE, COM) or scripts (such as VBS, PS1) uploaded to Salesforce Cloud.
Stop file type spoofing with intelligent file type recognition
Intelligent file type recognition detects file type spoofing attacks in Salesforce environments.Unlike conventional antivirus methods that rely on superficial file extensions or names, this feature provides a more precise identification process.
Intelligent file type recognition examines the content of each file, analyzing its behavior and characteristics to accurately identify the true nature and type of each file. As a result, even if a malicious file, such as an executable, has been renamed to appear as a safe file type like a .jpg, it will be blocked.
Detect and block out password protected archives
Password-protected archives commonly conceal malware, offering attackers a method to evade scanning by traditional anti-malware solutions like endpoint protection. This poses a significant risk, particularly in highly targeted industries. WithSecure™ Cloud Protection for Salesforce proactively addresses this threat with its advanced feature that detects and blocks password-protected archives in real-time.
Max out efficiency with automated threat removal
Depending on the settings, the antivirus system either replaces the malicious files on Salesforce with a .txt file explaining why the original file has been removed, or simply blocks any further user access to malicious files. Threat removal is automatic, so your admins don’t need to lift a finger.
Scan in real-time and on-demand
Our real-time protection on Salesforce scans files for threats both when users upload them to the platform, and whenever they download them. With this proactive approach, WithSecure Cloud Protection for Salesforce can effectively block evolving threats such as polymorphic malware types.
Moreover, you can scan your existing files in your Salesforce environment on-demand. You can also schedule automated scanning rounds for fortified protection.
Stay compliant with strict data handling protocols
User privacy is a top priority for us. Because of that, we anonymize the data we collect from users. We don’t gather any personally identifiable or other sensitive information. Moreover, we ensure that data handling follows the strictest privacy protocols. We encrypt data at all times – both in transit and at rest.
An average enterprise receives millions of files to their Salesforce. Every year.
Don’t let one malware stop the show.
BOOK A DEMO
Secure your Salesforce today
Tailored for high compliance sectors, our certified solution safeguards Salesforce clouds for global enterprises, including finance, healthcare, and the public sector.
Fill the form and get:
Free 15-day trial
Personalized Salesforce security risk assessment report
Demo and a solution consultation
Support from our experts with setup and configurations