Solutions
Solutions
Cross-Domain Solutions
Govern and secure data or device transfer for your segmented and air-gapped network environments.
MetaDefender Kiosk
MetaDefender Vault
MetaDefender Drive
MetaDefender USB Firewall
Secure Access
Secure local or remote access to your cloud applications, internal networks and resources.
MetaAccess Platform
MetaAccess SDP
Cloud Security for Salesforce
File Upload Security
Prevent malicious file uploads that can compromise your networks.
MetaDefender ICAP Server
MetaDefender Core
MetaDefender Core AMI
File Upload Security Assessment
MetaDefender Cloud
Malware Analysis
Analyze suspicious files or devices with our platform on-prem or in the cloud.

MetaDefender Core
MetaDefender Drive
MetaDefender Cloud
Email Security
The majority of malware continues to be initiated via email. OPSWAT Protects Your Organization Against Advanced Email Attacks.
MetaDefender Email Gateway Security
Network Access Control
Prevent risky devices including BYOD and IoT from accessing your networks with full endpoint visibility.

MetaAccess NAC
Storage Security
Protect your on-prem or cloud storage services and maintain regulatory compliance.

MetaDefender for Secure Storage
MetaDefender Vault
For Developers
Join hundreds of security vendors benefiting from OPSWAT’s industry-leading device and data security technologies.

MetaDefender Cloud
MetaDefender Core
MetaAccess
OESIS Framework
All Products
Trust no file. Trust no device.
Academy
Academy
CIP Cybersecurity Training
Use our on-demand courses to get trained and certified on cyber security concepts and best practices, critical infrastructure protection, and OPSWAT products and solution. Both introductory and advanced courses are available.
Courses and Certifications
The OPSWAT Academy consists of subject matter courses designed for the learner to build up their expertise using a phased approach.
For current OPSWAT customers, the Academy also includes advanced training courses for greater ease-of-use efficiency when operating and maintaining all OPSWAT products and services.
Available Certifications
Certified Cyber-security Associate
Certified MetaDefender Associate
Certified MetaAccess Associate
Certified Secure Data Workflow Associate
Critical Infrastructure Protection Associate
Certification Renewal
Each discipline certification is awarded for one year upon passing the exams on that discipline's courses in OPSWAT Academy.
In order to maintain active OCIPA Certification, make sure you stay current on all OPSWAT's individual discipline certifications.
OCIPA Certification Renewal
Trust no file. Trust no device.
Partners
Partners
Access Control Certification Program
A Service that verified compatibility and effectiveness of endpoint next-gen antimalware, antimalware and disk encryption products.
Platinum Level Products
Gold Level Products
All Products
Technology Partners
Enhance threat prevention by integrating OPSWAT technologies. OPSWAT partners with technology leaders offering best-of-breed solutions with the goal of building an ecosystem dedicated to data security and compliance using integrated solutions.
Categories
Technology Alliance Partner
Malware Sharing Program
MetaDefender Core Engine Supplier
MetaDefender Cloud Engine Supplier
Channel Partners
Our partner program is aimed at providing the most effective and innovative products and tools to help accelerate your business.
Channel Partner Program
Channel Program Application
Partner Portal
Channel Partner Directory
Trust no file. Trust no device.
Services
Services
Professional Services
Work with our subject matter experts for cyber security consultation, implementation and integration guidance, ongoing maintenance and improvement, or complete managed services.
Security Assessments
Solution Implementations
Custom Integrations
Ongoing Maintenance
Managed Services
Support
The OPSWAT’s support team can provide you 24x7x365 coverage via phone, chat, or cases that you log with you.
Support Plans
Support Contact Info
OPSWAT Portal
Create a Case
Knowledge Center
Online Documentation
Training Services
Take advantage of our instructor led training (ILT) courses or onsite “walk the floor” coaching to augment and expand on the training received through OPSWAT Academy courses.
Training Courses
“Floor Walking” Q&A
OPSWAT Academy
Use our on-demand courses to get trained and certified on cyber security concepts and best practices, critical infrastructure protection, and OPSWAT products and solution. Both introductory and advanced courses are available.
About Academy
Signup / Log in
Renew
Community
We believe that our customers are great resource that provides us with much understanding and drives us forward. Join the conversation and learn from others at our Community site.
Search for Answers
Sign in
Trust no file. Trust no device.
Company
Company
About
OPSWAT provides Critical Infrastructure Protection solutions to protect against cyberattacks.
Management Team
Contact Us
Compliance and Certifications
Customers
Over 1,000 customers worldwide trust OPSWAT to protect their digital assets and keep their data flows secure.
Customers
Case Studies
Careers
OPSWAT teams are filled with smart, curious and innovative people who are passionate about keeping the world safer. Join us, unleash your talent and help protect worldwide Critical Infrastructure.
Build your Career with OPSWAT
Open Positions
Events and Webinars
Learn how OPSWAT cybersecurity solutions can protect your organization against cyberattacks by visiting with us at conferences and attending webinars
Events
Webinars
News & Media Center
OPSWAT news, media coverage, and brand resources.
Blog
Press Releases
Brand Resources
Resources
Resources to learn about critical infrastructure protection and OPSWAT products.
Datasheets
Free Tools
Market Share Reports
Research Center
Videos
White Papers / eBook
Trust no file. Trust no device.
OPSWAT Portal

Defend Against Botnets with IP Scanning

July 16, 2014 | published by Yiyi Miao

According to a recent ThreatPost article, during a two-week time span earlier this year, thousands of poorly protected computers were compromised by a botnet that came from a singular malicious website. The botnet targeted weak remote desktop protocol (RDP) connections and brute forced them open, which allowed cyber-attackers to easily access user credentials and extract payment card information.

Try Metascan Online's new IP scanning feature! While it is not clear how the malware is being spread, according to researchers from FireEye, it appears to have circulated from one particular site - destre45[dot]com. In conjunction with weak password settings, users could leave themselves incredibly vulnerable to botnet attacks by unknowingly visiting a malicious website without taking the necessary precautions.

We decided to investigate this threat further and scanned the questionable website, utilizing our new IP reputation scanning feature that was recently launched into beta via our Metascan Online site. The result was that 3 of the 15 available reputation sources reported the website containing some form of malware. This capability allows users to take advantage of an aggregated IP reputation analysis and scan unfamiliar IP addresses or websites beforehand, ensuring that the website they plan to visit is not putting their personal information in jeopardy.

Malicious sites such as highlighted in this blog reinforce that users must take additional steps to ensure they are not connecting to malicious websites and become victims of cyber-attacks. While avoiding unfamiliar IP addresses or websites is the best course of action, if a user must connect to an unknown IP address they should add IP reputation scanning as an extra layer of security against potential botnet attacks.

As we mentioned, the all-new IP scanning feature for Metascan Online is currently in beta and we would love to get feedback from our amazing community! Tweet us @OPSWAT to let us know your thoughts about this new feature or ways we can improve it before we push the new feature to GA.

Share

Categories

Popular Posts

Sign up for Blog updates

Get information and insight from the leaders in advanced threat prevention.