Attivo Networks announces endpoint capabilities that catch attackers at ‘Hello’
Reading Time: < 1 | Published: July 22, 2020 in Attivo News
Attivo Networks, an award-winning leader in cyber deception and attacker lateral movement threat detection, has introduced new capabilities to its Endpoint Detection Net (EDN) solution that prevent attackers from fingerprinting an endpoint to identify security weaknesses and from conducting reconnaissance.
…
Attackers use fingerprinting to identify targets, decide which vulnerabilities to exploit and determine how to successfully interact with them. Unlike traditional security solutions, these new capabilities proactively redirect suspicious endpoint inbound or outbound traffic to decoys for attacker engagement.
The new EDN Deflect functionality provides alerts to unauthorized host and service scanning, which is critical because other security controls typically do not generate an alert for these types of activities. Attempts by attackers to fingerprint an endpoint are regularly missed due to the complexity of tracking, analyzing and alerting on all of an endpoint’s communications traffic. These new deflection capabilities efficiently and accurately detect network and application fingerprinting as well as lateral movement, closing one more attack vector that threat actors are increasingly leveraging.
Read the complete article at Intelligent CISO.
Share on:
Continue Reading
Free Active Directory Assessment
Get Visibility Into Privilege And Service Account Exposure
For a limited time, Attivo Networks is providing free Active Directory Security Assessments to demonstrate how ADAssessor provides unprecedented and continuous visibility to AD vulnerabilities.
Try Our Endpoint Detection Net (EDN) for Free
FAST AND EASY
Free use offer of our Award-winning security solution to prevent attackers from lateral movement, credential theft, and privilege escalation, fast and easy.
Newsletter Signup
ADSecure 90-Day Free Trial
GET PROTECTION AGAINST UNAUTHORIZED ACCESS TO ACTIVE DIRECTORY
- Hide and deny access to AD objects
- Get alerted on unauthorized queries
- Attack details easily viewable in dashboard
- Your data remains on-premise