Attivo Networks has expanded the functionality of its ThreatDefend detection platform.
These aim to anticipate an attacker’s behavior when it breaks out of an infected endpoint into a corporate network. In addition, ThreatDefend lures the attacker moving in the network into an ambush. This unique approach to detecting cyber threats focuses in particular on reducing dwell time. This is the critical period of time that an attacker could go undetected in the corporate network and that a company needs to restore normal operations after the threat has been countered.
The new ‘Endpoint Detection Net’ module serves as a powerful protection multiplier for companies that use Endpoint Protection (EPP) and Endpoint Detection and Response (EDR) solutions by closing detection gaps and facilitating automatic response to incidents.