Using more than one embedded engine can reduce the risk of cyber-attacks by blocking spam, detecting malicious content, and preventing users from accessing malicious websites, according to recent research by Cyren engineers and analysts.
A good single engine has the potential to provide up to 98 percent threat detection, but currently, no engine can provide 100 percent security. By using multiple engines, threat detection has become significantly better at data breach risk reduction. Increasing threat detection rate by almost 2 percent can significantly reduce the risk of malicious content being undetected. Layered security is based on two embedded solutions operating together to reduce risk and prevent users from suffering at the hands of cybercriminals.
The breach at American retailer ‘Home Depot' was caused by a failure in its threat detection engine and may cost the company over £30 million. Most companies use an embedded engine that usually focuses in one area, and the engines providing close to 99.9 percent protection were using a dual-engine approach, whereby two different AV, AS or URL filtering engines are designed to protect users against malicious content. How successful this dual-engine approach is depends on how many threats are detected. Different detection engines use different techniques to search for malware, and some engines take longer than others; and threats not picked up by the first engine will most likely be detected by the second, providing better protection than a single engine alone.