Attivo adds Ransomware 2.0 defences
Attivo’s EDN now improves file protection against human-operated ransomware by concealing and denying access to production mapped shares, cloud storage, and selected files or folders.
This limits the malware to the decoy environment, reducing the risk of a successful data compromise.
Traditional endpoint protection or endpoint detection and response products work by signature matching or behavioural anomaly detection, which are open to evasion by human attackers.
According to Attivo, such human-operated “Ransomware 2.0” attacks start with APT-style tactics designed to bypass traditional security controls and gain an initial foothold. From there, the attacker conducts network discovery, probes Active Directory, moves laterally, and identify high-value assets to target by encrypting critical data or taking control of other assets.
Read the full article in IT Wire.
Free Active Directory Assessment
Get Visibility Into Privilege And Service Account Exposure
For a limited time, Attivo Networks is providing free Active Directory Security Assessments to demonstrate how ADAssessor provides unprecedented and continuous visibility to AD vulnerabilities.
Try Our Endpoint Detection Net (EDN) for Free
FAST AND EASY
Free use offer of our Award-winning security solution to prevent attackers from lateral movement, credential theft, and privilege escalation, fast and easy.
ADSecure 90-Day Free Trial
GET PROTECTION AGAINST UNAUTHORIZED ACCESS TO ACTIVE DIRECTORY
- Hide and deny access to AD objects
- Get alerted on unauthorized queries
- Attack details easily viewable in dashboard
- Your data remains on-premise