Forcepoint RBI: Blocking Steganographic Data Exfiltration

With data theft is on the rise. Many organizations deploy defenses such as data loss prevention (DLP) technologies to prevent people from misusing sensitive data—copying to USB memory sticks, emailing to private accounts, uploading to unauthorized cloud storage, etc. Most of the major DLP vendors’ products do a good job of spotting text in a variety of formats (it’s something we’re especially known for). But, clever thieves are turning to new approaches, such as steganography, to embed sensitive data into images that typically pass through even stringent defenses. Steganography is relatively easy to do because many image formats allow extra information to be inserted, even if it’s not part of the picture that ultimately gets displayed. As web security solutions evolve beyond simply blocking access to inappropriate or known-bad sites, they’re incorporating new defenses against image-borne attacks. For example, Forcepoint Remote Browser Isolation (RBI), which is used throughout our web security solutions, applies a Zero Trust approach using technology known as “content disarm and reconstruction” (CDR) that makes web sites and downloaded content safe to use even if they’re secretly harboring malicious code. Join Corey Kiesewetter, Sr. Product Marketing Manager and Anthony Bennis, Sr. Product Manager as they demonstrate how CDR within RBI can stop stenographic exfiltration of confidential data embedded within an image or photograph.