Zero-Day Security: Thinking Outside the Box

June 1, 2017

Does your organization use Box Cloud Storage? Storing and managing files couldn’t be easier with a cloud-based filesharing platform like Box. In just a few clicks, your employees can upload and download files from any device or location. However, with this freedom comes an increased security risk. According to Accenture, 68% of business leaders feel their cybersecurity risks are increasing. And now more than ever, detection-based solutions aren’t enough to keep your zero-day security strategy robust. Let’s take a look at how Box security operates, the steps you should take for stronger zero-day security, and how else you can think outside the box.

How Malware Makes it Past Box

Yes, file sharing using a cloud application is super easy – but this also means that sharing malware is easy too! Every device that accesses Box creates another ‘door’ that can be used to breach your organization. In a mid to large-sized organization, there could be hundreds of these ‘doors’! And each one is a different device, with a different user. Somehow, you need to secure every single ‘door’, to prevent malware from spreading.

All it takes is for one employee to mistakenly – or unknowingly – upload a malicious file to Box. It won’t be long before the malicious file is downloaded to other devices. Alternatively, hackers could gain access to a Box account and purposefully upload a malicious file. This can get really sophisticated, with hackers using social engineering techniques like phishing to retrieve passwords from users and to create files that other employees would be more likely to open (based on hobbies, personal details, etc.). This way, they can gain access to more and more user devices across the organization.

Before you know it, the malware infection will spread, gaining a significant foothold in the organization, leading to a data breach or disrupting business operations. And that’s a risk you cannot afford to take – considering that the average total cost of a data breach increased by nearly 10% in 2021 to $4.24 million

The Zero-Day Security Steps You Need to Take 

As a first step, never underestimate the power of effective zero-day security policies. Make sure your employees follow best practices. Something as simple as choosing a good password – and knowing never to share it – can prevent a lot of mistakes from happening in the first place. Make sure your IT staff prioritizes running Box updates, as they often contain security patches that reduce vulnerabilities.

So far, we’ve described an excellent security foundation, – but many types of malware are specifically designed to outsmart us – being careful just isn’t enough. Mistakes do happen, and let’s face it, even if we’re on the lookout for suspicious files – hackers can be really good at covering their tracks! A file can look totally innocent, but still, contain a dangerous piece of malware. 

Every device (or ‘door’) used to access Box will need some form of protection. An obvious answer would be to use traditional detection-based security software. Antivirus, antimalware, and firewalls all fall into this bracket. Common, known forms of malware should be picked up by a good piece of software. However, hackers will do anything to evade detection, developing unknown (zero-day) threats that aren’t recognized by even the most up-to-date virus database. For zero-day security, detecting existing threats isn’t enough and something more innovative is needed. In other words, we need to ‘think outside the Box’.

Thinking Outside the Box and Improving Your Zero-Day Security with Votiro

Instead of protecting the devices connected to Box, how about we make sure that all files are free of malware before they are available for download? This is how Votiro’s Secure File (SFG) Gateway for Web Downloads works. Votiro’s Positive Selection technology to cleanse the individual files being uploaded to Box. It’s a prevention-based approach, so you don’t need to worry if the malware is known or unknown – it simply removes anything unusual from the file before it has any chance to do harm. You also don’t need to waste precious resources on teaching employees how to recognize suspicious files, as Votiro’s SFG cleanses every single file being uploaded. Votiro’s SFG integrates very easily with Box, and since the file cleansing process is so fastunder a second for a typical filethe likelihood is that no one will notice anything has happened.

So, what’s going on behind the scenes during this lightning-quick process? First of all, when an employee uploads a file to Box, the file is ‘locked’ and other users can’t download it yet. Votiro’s SFG will put the file through a rigorous file sanitization process. The file is stripped down into basic objects, and each individual section and metadata is analyzed. If any threats are found, they are neutralized. The file is then put back together – safe and clean.  Only then will it be unlocked and available to other users through Box. The only hint to this magic going on beneath the surface will be the file’s version history – which will show that Votiro has done its work.

With all files cleansed, even the sneakiest piece of hidden malware will be unable to reach your organization’s Box, ensuring zero-day security.

The Key to a Secure Box

Don’t let malware use Box to compromise your system – stop it in its tracks with a multilayered zero-day security approach. Secure your devices, secure file uploads, and enforce your policies. However, don’t forget the most important part of achieving zero-day security: Votiro Cloud. Contact us to learn more about how Votiro can strengthen your zero-day security strategy. Or, schedule a demo with us to see our Votiro Cloud in action.