Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Anti-Malware Overview

Malicious files, such as ransomware and adware, are becoming more common through multiple attack vectors. These threats compromise network endpoints, exposing them to data theft, including credentials and personally identifiable information (PII). Detecting and blocking malware and unwanted files on the network before they reach an endpoint is critical for protecting users, applications, and infrastructure from attacks.

Juniper Networks Anti-malware is a security framework that protects against evolving security threats by employing cloud-based security information. You can create anti-malware profiles for the SRX Series Firewalls in Juniper Security Director Cloud. Anti-malware profiles let you define which files to send to the cloud for inspection and the action to be taken when malware is detected.

After you create an anti-malware profile, you can assign the profile to a security policy. When an infected host on the cloud network tries to initiate contact, the SRX Series Firewall uses Juniper Advanced Threat Prevention Cloud’s (ATP Cloud) intelligence to remediate malicious content using security policies. If configured, security policies block the content before it is delivered to the destination address.

For more information on how to:

Figure 1 shows the high-level steps for anti-malware configuration using Juniper Security Director Cloud.

Figure 1: Juniper Security Director Cloud Workflow with Anti-malware Configuration Juniper Security Director Cloud Workflow with Anti-malware Configuration

Benefits of Anti-malware

  • Detect and block known malicious downloadable files and email attachments using protocols (for example, HTTPs, SMB, IMAP, and SMTP).

  • Quarantine the compromised internal hosts.

  • Identify the connected devices that are at risk.

  • Shut down attacks before they start.

  • Protect users (including subscribers), applications, and infrastructure from compromise.