Written by: Carolyn Crandall, Chief Deception Officer and CMO – Even with the best Endpoint Protection (EPP) and Endpoint Detection and Response (EDR) solutions, a persistent attacker will eventually infiltrate a network. As a safety net to your prevention controls, the newly announced Attivo Endpoint Detection Net (EDN) Suite stands by to prevent the breakout or lateral movement of an attacker from an infected system.
What makes this a must-have addition is that the Attivo Networks Endpoint Detection Net Suite serves as a force multiplier to existing EPP/EDR solutions, closing detection gaps, and accelerating incident response. The EDN suite works by providing early visibility, misdirection, and misinformation to deny attackers from moving undetected inside the network without impact to production or the performance of an endpoint.
Additional attack vectors covered include:
- Active Directory reconnaissance
- Credentials or mapped shares access
- Network assets discovery
- Man-in-the-middle attacks
- Exploration of lateral attack paths.
Plus, EDN can redirect adversaries to decoys for engagement and intelligence collection, improving the organization’s security posture. The EDN solution is customer-proven and has undergone rigorous testing with Aruba, Cisco, Crowdstrike, FireEye, ForeScout, McAfee, Tanium, and CarbonBlack/VMware. They have validated its ability to close gaps, seamlessly share attack information, and automate the isolation of infected endpoints.
The net result… EDR + EDN = Effective Endpoint Protection.
Click here to listen in to Tony Cole, CTO of Attivo Networks, and myself Carolyn Crandall, Chief Deception Officer and CMO talk about the EDN announcement and the benefits that your organization can gain.