Today we announced another first for the industry with our support for Amazon Web Services. This provides the industry’s first globally scalable deception technology solution that detects inside-the-network threats across enterprise, private and public clouds. We also announced an Attivo Central Manager, which provides a universal control console and centralization of threat intelligence for our global BOTsink® deployments.
In making the announcement our CEO, Tushar Kothari noted that these new capabilities have been in direct response to requests from our Fortune 500 customers. He added, “Most large enterprises and government agencies know they are constantly attacked, and there is a good chance they have already been breached. Once an attacker is inside the network, prevention solutions can’t reliably stop them, allowing zero-day attacks and lateral movement attack propagation to occur. Attivo deception efficiently detects attacks within the network and with no false positives, provides administrators with the alert and threat intelligence required to promptly shut down attacks.”
One of the reasons that the global solution has been made possible is that our Attivo BOTsink solution is not in-line and does not rely on looking up signatures and attack patterns. The solution is able to non-disruptively scale to support 100s of subnets and to detect east-west advanced malware traffic in large data center environments.
As part of the Attivo BOTsink Active Deception, we provide deception based on real operating systems and full services. For increased authenticity, our customers are also provided the option to completely and quickly customize their BOTsink deception and detection environment by importing a golden image of their current production machines. Our solution goes beyond basic detection: the Attivo BOTsink solution will engage the BOT or APT and provides the option to open a port to the attacker command and control server to gain a deeper understanding of attack information. In addition, an advanced threat intelligence dashboard manages alerts, and IOC reporting can be sent to prevention solutions to shut down a current and prevent future attacks.
The new Attivo Central Manager is designed to simplify the management of large global BOTsink deployments with a single management console that supports any version of current and future Attivo BOTsink solutions across all network environments. It can configure, manage and view events from large deployed BOTsink solutions with a single pane of glass.
Our new appliance and VM offerings now include the BOTsink 5100 with support for 100 VLANs and BOTsink 3200 for 32 VLANS.
We are extremely pleased with both our customers’ and leading analysts’ reception to our new features and offerings, along with the coverage of the announcement that can be found in our news release section. Our commitment is to enable our customers with advanced active deception solutions so that they can proactively detect and defend against cyber attacks. This is the first of several announcements we will be making over the course of the next few months that will help secure the role of deception as a foundation to a modern adaptive security defense.
Chief Marketing Officer