Trend
Micro™ Deep Discovery
Advisor is
a separately licensed product that provides unique security visibility
based on Trend Micro’s
proprietary threat analysis and recommendation engines.
Deep Discovery Advisor
is designed to:
-
Collect, aggregate, manage, and analyze logs into a centralized
storage space
-
Provide advanced visualization and investigation tools that
monitor, explore, and diagnose security events within the corporate
network
IMSS integrates
with the Virtual Analyzer in Deep Discovery
Advisor. IMSS sends
suspicious messages, including attachments, to Virtual Analyzer
for further analysis. Virtual Analyzer performs content simulation
and analysis in an isolated virtual environment to identify characteristics
commonly associated with many types of malware.
In particular, Virtual Analyzer checks if files attached to messages
contain exploit code. Although many files include non-executable
data, attackers find ways to cause such files to exploit vulnerabilities
in programs and operating systems that run them. Because of this,
sending malicious files to target users has become an effective
way for attackers to compromise systems.
For more information, see the Deep Discovery Advisor Administrator’s
Guide.
