Illusive Networks Attack Detection System

Promote this Nomination

Additional Info

Company (that provides the nominated product / solution / service)Illusive Networks
Company size (employees)50 to 99
Type of solutionSoftware

In 3 bullets, summarize why this product or service is different from the competition and deserves recognition:

The Illusive Platform offers the following key advantages over competition to security teams:

- Risk-oriented enterprise visibility. Illusive maps “crown jewels”, discovers potential attack paths to them, and enables defenders to eliminate high-risk pathways without impeding business function. When attackers are detected, responders prioritize triage by seeing where compromised systems sit in relation to crown jewels.

- Speed of detection and response. Resulting primarily from our endpoint-based approach to threat detections, attackers are caught as soon as they attempt lateral movement, no matter where they first land. Real-time host forensic capture accelerates analysis and triage. Security teams have access to rich, precise incident data delivered in real-time so they can rapidly analyze the situation, and respond effectively. Illusive captures forensic data from the systems where attackers are operating—both compromised endpoints and real-OS decoy systems.

- Ease of use and deployment. To reach endpoints, Illusive “rides” native connectivity and leverages machine intelligence to design and deploy customized deceptions at massive scale, including across networks of more than 500,000 endpoints. Deployment occurs in days or weeks with almost no IT involvement. In addition, Illusive deceptions remain invisible to legitimate end users, with no disruption to business operations.

Brief Overview

Although you know cyberattacks will inevitably occur, you can’t predict where an attacker will first break in, or where insider threat activity will begin. Illusive’s Attack Detection System blankets the entire network with fake information that forces attackers to reveal themselves.

After establishing an initial foothold, the attacker’s next step is to understand their surroundings and decide where they’ll try to move next. They may be armed with sophisticated cyberattack tools, but they’re human; they can’t avoid having to make decisions. It’s a critical weakness that can be used against them.

Illusive plants featherweight deceptions on every endpoint that mimic the real data, credentials and connections the attacker needs. Designed, deployed and managed through continuous machine learning automation, deceptions reflect the naming conventions and other practices of the organization so that the attacker cannot tell real from fake. Unknown to the attacker, his or her first wrong choice triggers an alert. By covering the entire endpoint inventory, the deception “net” is able to catch attackers at or close to “Patient Zero,” no matter where the attack begins.

Confronted with a distorted view of reality, it becomes impossible to choose a real path forward. Unknown to the attacker, one erroneous choice alerts the security team.

The defender is now in the driver’s seat. Incident response teams can see how far the attacker is from critical business assets. With real-time forensics in hand, they can take immediate action to stop business impact.

The Attack Detection System is an agentless, intelligence-driven technology that:

– Effortlessly creates a dense web of deceptions at scale
– Reduces noise in the security operations center
– Focuses incident response where it matters most
– Installs without significant involvement from IT teams
– Remains unobtrusive and invisible to end users
– Scales to support organizations of any size