sb-eu logo
Story image

Attivo Networks integrates with FireEye for advanced threat protection

Attivo Networks has integrated its ThreatDefend solution with both FireEye Endpoint Security and FireEye Malware Analysis.

The combined solution is designed to reduce time and resources required to detect and block attacks, while also collecting forensics to help organisations avoid future attacks.

Specifically, new capabilities allow customers to better utilise resources, analyse attacks, and remediate infected endpoints, ultimately decreasing the risk of breaches and data loss.

As cybercriminals get more focused on targeting a specific business, user account, or system, organisations need solutions that can face up to the threat, Attivo Networks states.

The latest integrations address changing critical requirements, the company states. The comprehensive solutions provide advanced threat detection and automated response as well as enhanced triage capabilities.

The Attivo ThreatDefend detection and response platform with FireEye Endpoint Security enables companies to detect and shutting down attackers that are already inside the network and expands on conventional techniques like signatures or behavioural detection.

The combined solution is designed to automatically detect and block threats and contain the attack to stop it from progressing.

It also provides visibility into attack activity and collects forensic information to help decrease the risk of future attacks, reducing response times and streamlining investigations.

The Attivo ThreatDefend detection and response platform with FireEye Malware Analysis features an integration with the Attivo BOTSink Management Server.

It automatically uploads payloads from infected decoys to FireEye Malware Analysis for review and to gather advance forensics information to block BOTs and APTs inside the network, isolating infected systems to contain the attack and stop data exfiltration.

Attivo Networks vice president of product management Marc Feghali says, “Cyber attackers have proven that they can infiltrate infrastructures of even the most security-savvy organisations.

“Attackers have also proven that, once inside, they can evade internal security solutions and traverse the network undetected.

“By collaborating with FireEye, we are delivering combined solutions that provide organisations with automatic in-network attack detection and blocking to reduce response times, as well as the forensics they need to strengthen their defenses against future attacks.”

FireEye vice president of engineering and endpoint GM Michelle Salvado says, “Threats against organisations networks and data continue to grow in sophistication.

“With our intelligence led protection, detection and response capabilities, FireEye Endpoint Security delivers layered defence against known and unknown threats.

"With Attivo Networks, our joint customers benefit from advanced threat detection and automated response, along with enhanced triage capabilities, to help decrease risk.”

The integrated solutions are both available immediately. Attivo Networks specialises in deception technology, providing an active defense for early detection, forensics, and automated incident response to in-network attacks.

Story image
Emotet malware is on a rampage after months of silence
CERT agencies around the world are reporting a surge in cyber attacks related to the Emotet malware, which is being distributed by email.More
Story image
Video: 10 Minute IT Jams - The benefits of converged cloud security
Today, Techday speaks to Forcepoint senior sales engineer and solutions architect Matthew Bant, who discusses the benefits of a converged cloud security model, and the pandemic's role in complicating the security stack in organisations around the world.More
Story image
Exabeam and Code42 partner up to launch insider threat solution
The solution will give customers a fuller picture of their environment, and will leverage automated incident response to obstruct insider threat before data loss occurs.More
Story image
BT Security shakes up roster of vendors after 'largest ever' partner review
BT says the decision to review their security partner base was driven by the recognition that many customers find it difficult to navigate today’s complex security landscape, as well as customers’ desire to have a ‘leaner set of partners’.More
Story image
OT networks warned of vulnerabilities in CodeMeter software
Manufacturers using the Wibu-Systems CodeMeter third-party licence management solution are being urged to remain vigilant and to urgently update the solution to CodeMeter version 7.10.More
Story image
The guide to digital security in unstable times
An increase in vulnerability across different sectors has meant that 2020 has seen more than its fair share of cybersecurity incidents. One of the most effective ways to combat the perils of today’s cyber-threats is to gain a better knowledge of the threat vectors looming over the heads of organisations. More