Software update lures and traps attackers targeting IoT devices
December 19, 2017
The latest version of TrapX’s DeceptionGrid software brings capabilities to support and defend IoT devices against targeting by cyber attackers.
Version 6.1 is said to combine the widest depth and breadth of deception technology for the protection of IoT in a single integrated platform.
The Californian company specialises in deception-based cyber security defence. Added capabilities in version 6.1 include specialised deception traps for attackers targeting print and copier servers, security cameras, and smart lighting.
DeceptionGrid 6.1 was created to answer critical questions in high-risk environments. How do you know if an attacker has penetrated your network? How can you identify them quickly? What are their intentions? How quickly can you stop an attack and return to normal operations? How can you prevent them from successfully targeting and compromising IoT devices that are unprotected by standard cyber defence software?
DeceptionGrid 6.1 has capabilities designed to deceive, detect and defeat attackers throughout all stages of a breach. It is designed to identify and bring the attack to an end sooner, reducing the time to breach detection and reducing or eliminating the risk to intellectual property, IT assets, critical infrastructure and business operations.
"As a financial institution, keeping up with the latest cyber-security threats is paramount to us, " said Oren Zenescu, chief information security officer at Israeli investment house Altshuler Shaham. “We investigated the use of deception technology as a way to augment the investments we have already made in endpoint and network security. We found that TrapX DeceptionGrid provided us with visibility into unauthorised lateral movement. The actionable intelligence that DeceptionGrid generates can be fed to other elements in the security ecosystem to make them more effective. That in addition to the fact that the tool was very easy to deploy and required almost no maintenance led us to deploy it to protect our network."
The capability of detecting attacks against closed circuit cameras could be a differentiator in the future of deception technology.
"The DeceptionGrid's enhancements revolutionise cyber security, particularly the nexus between physical security and information security," said Tom Kellermann, CEO of Strategic Cyber Ventures. “IoT security will necessitate CSOs and CISOs getting on the same page.”
Version 6.1 added features include:
- Expanded support for IoT: DeceptionGrid automatically provisions hundreds to thousands of traps that emulate IoT devices such as security cameras, networked printers and copiers, smart lighting systems, and more to deceive and attract attackers seeking these easily compromised network assets.
- Smart auto-pilot: This automatically analyses the entire network infrastructure and proposes the deployment of traps that best fit into the existing network environment. This dynamic analysis produces a unique deployment of deception within a network.
- Deception token orchestration: Deception token or lure orchestration brings support, reporting and analysis for self-distribution of tokens within Linux and Windows environments.
"Unlike other security solutions that work at the perimeter, TrapX DeceptionGrid 6.1 is strikingly different by working at the core of the network and within mission-critical infrastructure to provide real-time breach detection and prevention," said Sankara Narayanan, senior industry analyst at Frost & Sullivan. “TrapX has clearly enhanced the value proposition for its customers, thereby setting a high standard in the deception-based cyber-security defence landscape.”