{"global":{"lastError":{},"locale":"en","locales":{"data":[{"id":"de","name":"Deutsch"},{"id":"en","name":"English"}],"loading":false,"error":false},"currency":{"id":49,"name":"EUR"},"currencies":{"data":[{"id":49,"name":"EUR"},{"id":124,"name":"RUB"},{"id":153,"name":"UAH"},{"id":155,"name":"USD"}],"loading":false,"error":false},"translations":{"product":{"reference-bonus":{"ru":"Предложить бонус за референс","_type":"localeString","en":"Offer a reference bonus"},"configurator":{"en":"Сonfigurator","ru":"Конфигуратор","_type":"localeString"},"i-sell-it":{"ru":"I sell it","_type":"localeString","en":"I sell it"},"i-use-it":{"en":"I use it","ru":"I use it","_type":"localeString"},"roi-calculator":{"en":"ROI-calculator","ru":"ROI-калькулятор","_type":"localeString"},"selling":{"ru":"Продают","_type":"localeString","en":"Selling"},"using":{"ru":"Используют","_type":"localeString","en":"Using"},"show-more-button":{"en":"Show more","ru":"Показать еще","_type":"localeString"},"hide-button":{"en":"Hide","ru":"Скрыть","_type":"localeString"},"supplier-popover":{"ru":"поставщик","_type":"localeString","en":"supplier"},"implementation-popover":{"ru":"внедрение","_type":"localeString","en":"deployment"},"manufacturer-popover":{"ru":"производитель","_type":"localeString","en":"manufacturer"},"short-description":{"en":"Pitch","ru":"Краткое описание","_type":"localeString"},"i-use-it-popover":{"_type":"localeString","en":"Make your introduction and get a bonus from ROI4CIO or the supplier.","ru":"Внесите свое внедрение и получите бонус от ROI4CIO или поставщика."},"details":{"ru":"Детальнее","_type":"localeString","en":"Details"},"description":{"en":"Description","ru":"Описание","_type":"localeString"},"product-features":{"ru":"Особенности продукта","_type":"localeString","en":"Product features"},"categories":{"_type":"localeString","en":"Categories","ru":"Категории"},"solutions":{"ru":"Проблемы которые решает","_type":"localeString","en":" Problems that solves"},"values":{"ru":"Ценности","_type":"localeString","en":"Values"},"сomparison-matrix":{"ru":"Матрица сравнения","_type":"localeString","en":"Comparison matrix"},"testing":{"en":"Testing","ru":"Тестирование","_type":"localeString"},"compare":{"ru":"Сравнить с конкурентами","_type":"localeString","en":"Compare with competitors"},"characteristics":{"ru":"Характеристики","_type":"localeString","en":" Characteristics"},"transaction-features":{"_type":"localeString","en":"Transaction Features","ru":"Особенности сделки"},"average-discount":{"en":"Partner average discount","ru":"Средняя скидка партнера","_type":"localeString"},"deal-protection":{"ru":"Защита сделки","_type":"localeString","en":"Deal protection"},"average-deal":{"ru":"Средний размер сделки","_type":"localeString","en":"Average deal size"},"average-time":{"en":"Average deal closing time","ru":"Средний срок закрытия сделки","_type":"localeString"},"login":{"ru":"Войти","_type":"localeString","en":"Login"},"register":{"_type":"localeString","en":"Register","ru":"Зарегистрироваться"},"to-know-more":{"_type":"localeString","en":"To know more","ru":"Чтобы узнать больше"},"scheme":{"en":" Scheme of work","ru":"Схема работы","_type":"localeString"},"competitive-products":{"ru":"Конкурентные продукты","_type":"localeString","en":" Competitive products"},"implementations-with-product":{"ru":"Внедрения с этим продуктом","_type":"localeString","en":"Deployments with this product"},"user-features":{"en":"User features","ru":"Особенности пользователей","_type":"localeString"},"job-roles":{"_type":"localeString","en":" Roles of Interested Employees","ru":"Роли заинтересованных сотрудников"},"organizational-features":{"ru":"Организационные особенности","_type":"localeString","en":"Organizational Features"},"calculate-price":{"en":" Calculate product price","ru":"Рассчитать цену продукта","_type":"localeString"},"selling-stories":{"_type":"localeString","en":" Selling stories","ru":"Продающие истории"},"materials":{"ru":"Материалы","_type":"localeString","en":"Materials"},"about-product":{"en":"About Product","ru":"О продукте","_type":"localeString"},"or":{"ru":"или","_type":"localeString","en":"or"},"program-sends-data":{"_type":"localeString","en":"Program Sends Data"},"calculate-roi":{"ru":"Рассчитать ROI продукта","_type":"localeString","en":"Calculate Product ROI"},"complementary-categories":{"en":"Complementary Categories","ru":"Схожие категории","_type":"localeString"},"program-receives-data":{"en":"Program Receives Data","_type":"localeString"},"rebate":{"_type":"localeString","en":"Bonus","ru":"Бонус"},"rebate-for-poc":{"ru":"Бонус 4 POC","_type":"localeString","en":"Bonus 4 POC"},"configurator-content":{"ru":"Рассчитайте стоимость продукта","_type":"localeString","en":"Calculate price for this product here"},"configurator-link":{"_type":"localeString","en":"here","ru":"тут"},"vendor-popover":{"_type":"localeString","en":"vendor","ru":"производитель"},"user-popover":{"ru":"пользователь","_type":"localeString","en":"user"},"select-for-presentation":{"ru":"выбрать продукт для презентации","_type":"localeString","en":"select product for presentation"},"auth-message":{"_type":"localeString","en":"You have to register or login.","ru":"Вам нужно зарегистрироваться или войти."},"add-to-comparison":{"_type":"localeString","en":"Add to comparison","ru":"Добавить в сравнение"},"added-to-comparison":{"en":"Added to comparison","ru":"Добавлено в сравнения","_type":"localeString"},"roi-calculator-content":{"ru":"Рассчитайте ROI для данного продукта","_type":"localeString","en":"Calculate ROI for this product here"},"not-yet-converted":{"_type":"localeString","en":"Data is moderated and will be published soon. Please, try again later.","ru":"Данные модерируются и вскоре будут опубликованы. Попробуйте повторить переход через некоторое время."},"videos":{"_type":"localeString","en":"Videos","ru":"Видео"},"vendor-verified":{"_type":"localeString","en":"Vendor verified","ru":"Подтверждено производителем"},"event-schedule":{"ru":"Расписание событий","_type":"localeString","en":"Events schedule"},"scheduling-tip":{"_type":"localeString","en":"Please, сhoose a convenient date and time and register for the event.","ru":"Выберите удобную дату и время и зарегистрируйтесь на ивент."},"register-to-schedule":{"_type":"localeString","en":"To register for the event please log in or register on the site.","ru":"Для того чтобы зарегистрироваться на ивент пожалуйста авторизируйтесь или зарегистрируйтесь на сайт."},"comparison-matrix":{"ru":"Матрица сравнений","_type":"localeString","en":"Comparison matrix"},"compare-with-competitive":{"ru":"Сравнить с конкурентными","_type":"localeString","en":" Compare with competitive"},"avg-deal-closing-unit":{"ru":"месяцев","_type":"localeString","en":"months"},"under-construction":{"ru":"Данная услуга всё ещё находится в разработке.","_type":"localeString","en":"Current feature is still developing to become even more useful for you."},"product-presentation":{"ru":"Презентация продукта","_type":"localeString","en":"Product presentation"},"go-to-comparison-table":{"ru":"Перейти к таблице сравнения","_type":"localeString","en":" Go to comparison table"},"see-product-details":{"ru":"Детали","_type":"localeString","en":"See Details"}},"header":{"help":{"_type":"localeString","en":"Help","de":"Hilfe","ru":"Помощь"},"how":{"ru":"Как это работает","_type":"localeString","en":"How does it works","de":"Wie funktioniert es"},"login":{"en":"Log in","de":"Einloggen","ru":"Вход","_type":"localeString"},"logout":{"ru":"Выйти","_type":"localeString","en":"logout"},"faq":{"ru":"FAQ","_type":"localeString","en":"FAQ","de":"FAQ"},"references":{"de":"References","ru":"Мои запросы","_type":"localeString","en":"Requests"},"solutions":{"ru":"Возможности","_type":"localeString","en":"Solutions"},"find-it-product":{"_type":"localeString","en":"Selection and comparison of IT product","ru":"Подбор и сравнение ИТ продукта"},"autoconfigurator":{"_type":"localeString","en":" Price calculator","ru":"Калькулятор цены"},"comparison-matrix":{"ru":"Матрица сравнения","_type":"localeString","en":"Comparison Matrix"},"roi-calculators":{"ru":"ROI калькуляторы","_type":"localeString","en":"ROI calculators"},"b4r":{"_type":"localeString","en":"Bonus for reference","ru":"Бонус за референс"},"business-booster":{"en":"Business boosting","ru":"Развитие бизнеса","_type":"localeString"},"catalogs":{"_type":"localeString","en":"Catalogs","ru":"Каталоги"},"products":{"ru":"Продукты","_type":"localeString","en":"Products"},"implementations":{"en":"Deployments","ru":"Внедрения","_type":"localeString"},"companies":{"_type":"localeString","en":"Companies","ru":"Компании"},"categories":{"en":"Categories","ru":"Категории","_type":"localeString"},"for-suppliers":{"ru":"Поставщикам","_type":"localeString","en":"For suppliers"},"blog":{"_type":"localeString","en":"Blog","ru":"Блог"},"agreements":{"_type":"localeString","en":"Deals","ru":"Сделки"},"my-account":{"ru":"Мой кабинет","_type":"localeString","en":"My account"},"register":{"ru":"Зарегистрироваться","_type":"localeString","en":"Register"},"comparison-deletion":{"_type":"localeString","en":"Deletion","ru":"Удаление"},"comparison-confirm":{"_type":"localeString","en":"Are you sure you want to delete","ru":"Подтвердите удаление"},"search-placeholder":{"ru":"Введите поисковый запрос","_type":"localeString","en":"Enter your search term"},"my-profile":{"ru":"Мои Данные","_type":"localeString","en":"My Profile"},"about":{"_type":"localeString","en":"About Us"},"it_catalogs":{"_type":"localeString","en":"IT catalogs"},"roi4presenter":{"en":"Roi4Presenter","_type":"localeString"},"roi4webinar":{"_type":"localeString","en":"Roi4Webinar"},"sub_it_catalogs":{"_type":"localeString","en":"Find IT product"},"sub_b4reference":{"_type":"localeString","en":"Get reference from user"},"sub_roi4presenter":{"en":"Make online presentations","_type":"localeString"},"sub_roi4webinar":{"en":"Create an avatar for the event","_type":"localeString"},"catalogs_new":{"en":"Products","_type":"localeString"},"b4reference":{"_type":"localeString","en":"Bonus4Reference"},"it_products":{"_type":"localeString","en":"Find and compare IT products"},"it_implementations":{"en":"Learn implementation reviews","_type":"localeString"},"it_companies":{"en":"Find vendor and company-supplier","_type":"localeString"},"it_categories":{"_type":"localeString","en":"Calculate ROI and price"},"it_our_products":{"_type":"localeString","en":"Our Products"},"it_it_catalogs":{"_type":"localeString","en":"IT catalogs"}},"footer":{"copyright":{"de":"Alle rechte vorbehalten","ru":"Все права защищены","_type":"localeString","en":"All rights reserved"},"company":{"en":"My Company","de":"Über die Firma","ru":"О компании","_type":"localeString"},"about":{"de":"Über uns","ru":"О нас","_type":"localeString","en":"About us"},"infocenter":{"_type":"localeString","en":"Infocenter","de":"Infocenter","ru":"Инфоцентр"},"tariffs":{"de":"Tarife","ru":"Тарифы","_type":"localeString","en":"Subscriptions"},"contact":{"de":"Kontaktiere uns","ru":"Связаться с нами","_type":"localeString","en":"Contact us"},"marketplace":{"en":"Marketplace","de":"Marketplace","ru":"Marketplace","_type":"localeString"},"products":{"en":"Products","de":"Produkte","ru":"Продукты","_type":"localeString"},"compare":{"de":"Wähle und vergleiche","ru":"Подобрать и сравнить","_type":"localeString","en":"Pick and compare"},"calculate":{"de":"Kosten berechnen","ru":"Расчитать стоимость","_type":"localeString","en":"Calculate the cost"},"get_bonus":{"ru":"Бонус за референс","_type":"localeString","en":"Bonus for reference","de":"Holen Sie sich einen Rabatt"},"salestools":{"de":"Salestools","ru":"Salestools","_type":"localeString","en":"Salestools"},"automatization":{"ru":"Автоматизация расчетов","_type":"localeString","en":"Settlement Automation","de":"Abwicklungsautomatisierung"},"roi_calcs":{"_type":"localeString","en":"ROI calculators","de":"ROI-Rechner","ru":"ROI калькуляторы"},"matrix":{"de":"Vergleichsmatrix","ru":"Матрица сравнения","_type":"localeString","en":"Comparison matrix"},"b4r":{"de":"Rebate 4 Reference","ru":"Rebate 4 Reference","_type":"localeString","en":"Rebate 4 Reference"},"our_social":{"de":"Unsere sozialen Netzwerke","ru":"Наши социальные сети","_type":"localeString","en":"Our social networks"},"subscribe":{"de":"Melden Sie sich für den Newsletter an","ru":"Подпишитесь на рассылку","_type":"localeString","en":"Subscribe to newsletter"},"subscribe_info":{"ru":"и узнавайте первыми об акциях, новых возможностях и свежих обзорах софта","_type":"localeString","en":"and be the first to know about promotions, new features and recent software reviews"},"policy":{"_type":"localeString","en":"Privacy Policy","ru":"Политика конфиденциальности"},"user_agreement":{"en":"Agreement","ru":"Пользовательское соглашение ","_type":"localeString"},"solutions":{"_type":"localeString","en":"Solutions","ru":"Возможности"},"find":{"ru":"Подбор и сравнение ИТ продукта","_type":"localeString","en":"Selection and comparison of IT product"},"quote":{"ru":"Калькулятор цены","_type":"localeString","en":"Price calculator"},"boosting":{"en":"Business boosting","ru":"Развитие бизнеса","_type":"localeString"},"4vendors":{"_type":"localeString","en":"4 vendors","ru":"поставщикам"},"blog":{"ru":"блог","_type":"localeString","en":"blog"},"pay4content":{"ru":"платим за контент","_type":"localeString","en":"we pay for content"},"categories":{"ru":"категории","_type":"localeString","en":"categories"},"showForm":{"en":"Show form","ru":"Показать форму","_type":"localeString"},"subscribe__title":{"en":"We send a digest of actual news from the IT world once in a month!","ru":"Раз в месяц мы отправляем дайджест актуальных новостей ИТ мира!","_type":"localeString"},"subscribe__email-label":{"_type":"localeString","en":"Email","ru":"Email"},"subscribe__name-label":{"ru":"Имя","_type":"localeString","en":"Name"},"subscribe__required-message":{"ru":"Это поле обязательное","_type":"localeString","en":"This field is required"},"subscribe__notify-label":{"_type":"localeString","en":"Yes, please, notify me about news, events and propositions","ru":"Да, пожалуйста уведомляйте меня о новостях, событиях и предложениях"},"subscribe__agree-label":{"ru":"Подписываясь на рассылку, вы соглашаетесь с %TERMS% и %POLICY% и даете согласие на использование файлов cookie и передачу своих персональных данных*","_type":"localeString","en":"By subscribing to the newsletter, you agree to the %TERMS% and %POLICY% and agree to the use of cookies and the transfer of your personal data"},"subscribe__submit-label":{"en":"Subscribe","ru":"Подписаться","_type":"localeString"},"subscribe__email-message":{"en":"Please, enter the valid email","ru":"Пожалуйста, введите корректный адрес электронной почты","_type":"localeString"},"subscribe__email-placeholder":{"ru":"username@gmail.com","_type":"localeString","en":"username@gmail.com"},"subscribe__name-placeholder":{"ru":"Имя Фамилия","_type":"localeString","en":"Last, first name"},"subscribe__success":{"ru":"Вы успешно подписаны на рассылку. Проверьте свой почтовый ящик.","_type":"localeString","en":"You are successfully subscribed! Check you mailbox."},"subscribe__error":{"en":"Subscription is unsuccessful. Please, try again later.","ru":"Не удалось оформить подписку. Пожалуйста, попробуйте позднее.","_type":"localeString"},"roi4presenter":{"de":"roi4presenter","ru":"roi4presenter","_type":"localeString","en":"Roi4Presenter"},"it_catalogs":{"_type":"localeString","en":"IT catalogs"},"roi4webinar":{"_type":"localeString","en":"Pitch Avatar"},"b4reference":{"_type":"localeString","en":"Bonus4Reference"}},"breadcrumbs":{"home":{"ru":"Главная","_type":"localeString","en":"Home"},"companies":{"ru":"Компании","_type":"localeString","en":"Companies"},"products":{"en":"Products","ru":"Продукты","_type":"localeString"},"implementations":{"ru":"Внедрения","_type":"localeString","en":"Deployments"},"login":{"ru":"Вход","_type":"localeString","en":"Login"},"registration":{"en":"Registration","ru":"Регистрация","_type":"localeString"},"b2b-platform":{"ru":"Портал для покупателей, поставщиков и производителей ИТ","_type":"localeString","en":"B2B platform for IT buyers, vendors and suppliers"}},"comment-form":{"title":{"ru":"Оставить комментарий","_type":"localeString","en":"Leave comment"},"firstname":{"en":"First name","ru":"Имя","_type":"localeString"},"lastname":{"en":"Last name","ru":"Фамилия","_type":"localeString"},"company":{"ru":"Компания","_type":"localeString","en":"Company name"},"position":{"ru":"Должность","_type":"localeString","en":"Position"},"actual-cost":{"en":"Actual cost","ru":"Фактическая стоимость","_type":"localeString"},"received-roi":{"ru":"Полученный ROI","_type":"localeString","en":"Received ROI"},"saving-type":{"ru":"Тип экономии","_type":"localeString","en":"Saving type"},"comment":{"_type":"localeString","en":"Comment","ru":"Комментарий"},"your-rate":{"ru":"Ваша оценка","_type":"localeString","en":"Your rate"},"i-agree":{"_type":"localeString","en":"I agree","ru":"Я согласен"},"terms-of-use":{"en":"With user agreement and privacy policy","ru":"С пользовательским соглашением и политикой конфиденциальности","_type":"localeString"},"send":{"_type":"localeString","en":"Send","ru":"Отправить"},"required-message":{"ru":"{NAME} - это обязательное поле","_type":"localeString","en":"{NAME} is required filed"}},"maintenance":{"title":{"ru":"На сайте проводятся технические работы","_type":"localeString","en":"Site under maintenance"},"message":{"en":"Thank you for your understanding","ru":"Спасибо за ваше понимание","_type":"localeString"}}},"translationsStatus":{"product":"success"},"sections":{},"sectionsStatus":{},"pageMetaData":{"product":{"meta":[{"name":"og:type","content":"website"},{"name":"og:image","content":"https://roi4cio.com/fileadmin/templates/roi4cio/image/roi4cio-logobig.jpg"}],"translatable_meta":[{"name":"og:title","translations":{"ru":"Конкретный продукт","_type":"localeString","en":"Example product"}},{"name":"og:description","translations":{"en":"Description for one product","ru":"Описание для конкретного продукта","_type":"localeString"}},{"name":"title","translations":{"_type":"localeString","en":"Product","ru":"Продукт"}},{"name":"description","translations":{"ru":"Описание продукта","_type":"localeString","en":"Product description"}},{"name":"keywords","translations":{"_type":"localeString","en":"Product keywords","ru":"Ключевые слова продукта"}}],"title":{"ru":"ROI4CIO: Продукт","_type":"localeString","en":"ROI4CIO: Product"}}},"pageMetaDataStatus":{"product":"success"},"subscribeInProgress":false,"subscribeError":false},"auth":{"inProgress":false,"error":false,"checked":true,"initialized":false,"user":{},"role":null,"expires":null},"products":{"productsByAlias":{"trapx-deceptiongrid-platform1":{"id":1724,"logoURL":"https://old.b4r.io/fileadmin/user_upload/TrapX_DeceptionGrid_platform.png","logo":true,"scheme":false,"title":"TrapX DeceptionGrid platform","vendorVerified":0,"rating":"3.30","implementationsCount":9,"suppliersCount":0,"supplierPartnersCount":1,"alias":"trapx-deceptiongrid-platform1","companyTitle":"TrapX","companyTypes":["supplier","vendor"],"companyId":3890,"companyAlias":"trapx","description":"<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px;\">The TrapX DeceptionGrid platform protects your valuable assets against a multitude of attacks including malicious insiders and sophisticated cybercriminals.</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">The Deception Product of Choice</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px;\">DeceptionGrid’s depth and breadth of deception capability is unmatched. Our powerful architecture presents the deception attack surfaces that best match attacker activity. Learn more below.</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Console with Attack Visualization</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px;\">New expanded visualization enables the security operations team to rapidly understand the activities of the attacker over time, from the originating intrusion to the assets they are engaging with, to the final containment.</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Attacker ID</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px;\">New attack identification automatically determines if an attack is being conducted by a human attacker, or automated attack tools, giving security teams a better understanding of the attack and subsequent containment methods.</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Automated Provisioning</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px;\"> Automated Provision of Deception Components. DeceptionGrid scans your existing network and provisions hundreds-to-thousands of deception components including Tokens (lures) and Traps (decoys).</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Deception Tokens</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px;\">Deception Tokens (lures) appear as ordinary files, scripts and databases, are embedded within real IT assets to bait and divert attackers.</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Active Traps</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px;\">New active traps functionality creates a stream of false network traffic between deployed traps to confuse and divert attackers that monitor the network traffic.</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Emulated Traps</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Medium Interaction Emulated Traps</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px;\">Our patented emulated traps can be deployed at the largest enterprise scale through automation. You can select from a wide variety of servers, databases, workstations, switches, routers and more.</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Industry Templates</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px;\">The patented medium interaction traps now include expanded templates for specialized devices based on industries. These templates include, ATM’s and SWIFT assets for financial services, or Point of Sale (PoS) devices for retail, as well as devices for medical, manufacturing and many more, allowing customers to determine if attackers are targeting specialized devices that are often vulnerable to attack.</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">FullOS Traps</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">High Interaction (Full Operating System) Traps</span>\r\n<span style=\"color: #000000; font-family: Verdana, sans-serif; font-size: 12px;\">DeceptionGrid enables the provision of full operating system (fullOS) traps. Our medium interaction traps automatically extend engaged attackers through our smart deception to our fullOS decoys for the deepest attacker diversion and engagement. FullOS traps also enable customers to clone existing assets – you can completely replicate actual production servers to further deceive attackers.</span>\r\n","shortDescription":"The TrapX DeceptionGrid protects your valuable assets against a multitude of attacks including malicious insiders, lateral-movement, Advanced Persistent Threats (APTs) and sophisticated cybercriminals","type":"Software","isRoiCalculatorAvaliable":true,"isConfiguratorAvaliable":true,"bonus":100,"usingCount":12,"sellingCount":8,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"DeceptionGrid protects your valuable assets against a multitude of attacks including malicious insiders, lateral-movement","keywords":"from, TrapX, DeceptionGrid, breach, attack, platform, intelligence, remediation, protects, assets, malicious insiders, lateral-movement, Advanced Persistent Threats (APTs), sophisticated cybercriminals, Console, Attack Visualization, security operations team, intrusion, Attacker ID, attack identification, human attacker, automated attack tools, security teams, Automated Provisioning, Deception Tokens, Active Traps, Emulated Traps, Medium Interaction Emulated Traps, FullOS Traps, High Interaction (Full Operating System) Traps","description":"The TrapX DeceptionGrid platform protects your valuable assets against a multitude of attacks including malicious insiders and sophisticated cybercriminals.","og:title":"DeceptionGrid protects your valuable assets against a multitude of attacks including malicious insiders, lateral-movement","og:description":"The TrapX DeceptionGrid platform protects your valuable assets against a multitude of attacks including malicious insiders and sophisticated cybercriminals.","og:image":"https://old.b4r.io/fileadmin/user_upload/TrapX_DeceptionGrid_platform.png"},"eventUrl":"","translationId":1723,"dealDetails":{"avgPartnerDiscount":30,"dealProtection":1,"avgDealSize":30000,"dealSizeCurrency":"USD","avgDealClosing":3},"roi":null,"price":null,"bonusForReference":null,"templateData":[{"id":28,"title":"Deception Techniques and Honeypots"}],"testingArea":"It is required to transfer the customer data to the vendor in order to receive a testing version for 30 days","categories":[{"id":199,"title":"Deception Techniques and Honeypots","alias":"deception-techniques-and-honeypots","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/simulation-and-trap-technologies.png"},{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"}],"characteristics":[{"id":403,"title":"Deception Tokens for WIn","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":405,"title":"Deception Tokens for Lin","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":407,"title":"Deception Tokens for Mac","required":0,"type":"binary","templateId":28,"value":"N/A","options":{"values":null,"defaults":null}},{"id":409,"title":"Web App integration","required":0,"type":"binary","templateId":28,"value":"N/A","options":{"values":null,"defaults":null}},{"id":411,"title":"C&C detection","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":413,"title":"Emulated traps","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":415,"title":"NAC integration","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":417,"title":"Full OS traps","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":419,"title":"SIEM Integration","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":421,"title":"Endpoint integration","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":423,"title":"Built-in correlation","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":425,"title":"Built-in ticketing","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":427,"title":"Sanbox integration","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":429,"title":"POS","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":431,"title":"ATM","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":433,"title":"SCADA","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":435,"title":"IoT","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":437,"title":"Clouds","required":0,"type":"multiselect","templateId":28,"value":"AWS, Azure, OpenStack","options":["AWS","Azure","OpenStack","SaaS available","Yes"]},{"id":672,"title":"Open API for integration","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":674,"title":"Botnet detection","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":676,"title":"Automatic code analysis","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}},{"id":678,"title":"Custom trap builder","required":0,"type":"binary","templateId":28,"value":true,"options":{"values":null,"defaults":null}}],"concurentProducts":[{"id":1739,"logoURL":"https://old.b4r.io/fileadmin/content/Copy_of_Gurucul_Logo_-_2018-_High_.png","logo":true,"scheme":false,"title":"Gurucul Identity Analytics","vendorVerified":0,"rating":"0.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"gurucul-identity-analytics","companyTitle":"Gurucul","companyTypes":["supplier","vendor"],"companyId":4328,"companyAlias":"gurucul","description":"<p style=\"box-sizing: border-box; margin: 0px 0px 20px; font-family: Lato; color: #3a4145; font-size: 16px;\">Gurucul Identity Analytics (IdA) comprehensively manages and monitors identity-based risks and threats across an organization’s siloed environments. Using big data, Gurucul provides a holistic 360-degree view of identity, access, privileged access, and usage in the cloud, on mobile and on-premises. IdA reduces the access plane by detecting and removing access risks, access outliers, and orphan or dormant accounts. This improves an organization’s security posture by significantly decreasing the number of accounts that can be compromised or abused.</p>\r\n<p style=\"box-sizing: border-box; margin: 0px 0px 20px; font-family: Lato; color: #3a4145; font-size: 16px;\">Identity Analytics delivers the data science that improves IAM and PAM, enriching existing identity management investments and accelerating deployments. IdA surpasses human capabilities by leveraging machine learning models to define, review and confirm accounts and entitlements for access. It uses dynamic risk scores and advanced analytics data as key indicators for provisioning, de-provisioning, authentication and privileged access management.</p>\r\n<p style=\"box-sizing: border-box; margin: 0px; font-family: Lato; color: #3a4145; font-size: 16px;\">The impact of machine learning with Identity Analytics can radically reduce accounts and entitlements. Machine learning models provide 360-degree visibility for an identity, accounts and access, with the ability to compare to peer groups using baselines to determine normal and anomalous access. The objective is to clean up the access plane to enable access only where it should be provided.</p>","shortDescription":"Real-Time Access Control Automation Using Risk and Intelligence","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":18,"sellingCount":11,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Gurucul Identity Analytics","keywords":"access, accounts, Identity, Analytics, data, Gurucul, identity, learning","description":"Gurucul Identity Analytics (IdA) comprehensively manages and monitors identity-based risks and threats across an organization’s siloed environments.","og:title":"Gurucul Identity Analytics","og:description":"Gurucul Identity Analytics (IdA) comprehensively manages and monitors identity-based risks and threats across an organization’s siloed environments.","og:image":"https://old.b4r.io/fileadmin/content/Copy_of_Gurucul_Logo_-_2018-_High_.png"},"eventUrl":"","translationId":1739,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":44,"title":"IAM - Identity and Access Management","alias":"iam-identity-and-access-management","description":"Управление учётными данными (англ. Identity management, сокр. IdM) — комплекс подходов, практик, технологий и специальных программных средств для управления учётными данными пользователей, системами контроля и управления доступом (СКУД), с целью повышения безопасности и производительности информационных систем при одновременном снижении затрат, оптимизации времени простоя и сокращения количества повторяющихся задач.\r\n\r\nИсточник: https://ru.wikipedia.org/wiki/%D0%A3%D0%BF%D1%80%D0%B0%D0%B2%D0%BB%D0%B5%D0%BD%D0%B8%D0%B5_%D1%83%D1%87%D1%91%D1%82%D0%BD%D1%8B%D0%BC%D0%B8_%D0%B4%D0%B0%D0%BD%D0%BD%D1%8B%D0%BC%D0%B8","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/iam-identity-and-access-management.png"},{"id":78,"title":"PAM - privileged access management","alias":"pam-privileged-access-management","description":"Организация доступа к критически важным системам, устройствам и учетным записям - крупная головная боль любой большой компании. Пароли к этим системам являются ключами к конфиденциальной информации, а значит и к финансовой стабильности. Управление доступом и контроль использования административных полномочий - вот главные риски безопасности предприятия.\r\nТысячи серверов, сетевых устройств, административных учетных записей и паролей - стандартная ситуация для современного предприятия. Ручное изменение и управление такой инфраструктурой отнимает огромное количество времени, денег и человеческих ресурсов","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/PAM.png"},{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"},{"id":465,"title":"UEBA - User and Entity Behavior Analytics","alias":"ueba-user-and-entity-behavior-analytics","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/user-behavior-analytics.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1048,"logoURL":"https://old.b4r.io/fileadmin/user_upload/Aruba_360_Secure_Fabric.jpg","logo":true,"scheme":false,"title":"Aruba 360 Secure Fabric","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"aruba-360-secure-fabric","companyTitle":"Aruba, a Hewlett Packard Enterprise Company","companyTypes":["vendor"],"companyId":3914,"companyAlias":"aruba-a-hewlett-packard-enterprise-company","description":"<span style=\"font-weight: bold;\">There are 3 elements to this fabric:</span>\r\n• Aruba Security Software: Proactive network access control and policy management, and industry-leading UEBA for any network\r\n• Aruba Secure Core: Analytics-ready network infrastructure with embedded security\r\n• A best-in-class security ecosystem\r\nAruba IntroSpect’s User and Entity Behavior Analytics (UEBA) detects attacks by spotting small changes in behavior that often are indicative of exploits that have evaded traditional security monitoring and analytics. Today’s attacks can be comprised of many smaller actions that occur over long periods of time. These types of attacks are also notoriously difficult to detect because they can involve compromised users and hosts where cyber criminals have evaded perimeter defenses using legitimate credentials to access corporate resources. Phishing scams, social engineering and malware are just a few of the popular techniques by which these criminals acquire employee corporate credentials. IntroSpect uses machine-learned intelligence and automates the detection of these attacks by giving security and network operations early visibility. Supervised and unsupervised machine learning models process large amounts of data in order to establish a baseline of typical IT activity for a user, device or system. Deviations from these baselines are often the first indication that an attack is underway.\r\nBoth ClearPass and Introspect serve as Aruba’s security software solution and can be applied individually or in tandem to any network across campus, distributed enterprise, cloud, and IoT edge environments. While overlaying Aruba’s Secure Core, ClearPass and Introspect provide unmatched analytics-driven protection against today’s changing threat landscape.\r\nStarting with core security capabilities embedded in the foundation of all of Aruba’s Wi-Fi access points (APs), switches, routers, and controllers, Aruba builds on this foundation by integrating IntroSpect machine learning-based attack detection with access control systems like Aruba ClearPass in an open, multi-vendor platform. With the Aruba 360 Secure Fabric, security teams can now develop a seamless path from user and device discovery and access, to analytics-driven attack detection and response – based on policies set by the organization.\r\nIT disaggregation means organizations not only need a secure network foundation, but also visibility and control of the users and devices connected to the network. ClearPass allows the enterprise to cover the entire set of access control use cases from wired to wireless, guest, BYOD onboarding and policy-based remediation and attack response.","shortDescription":"Aruba is now changing the paradigm with the Aruba 360 Secure Fabric, an enterprise security framework that gives security and IT teams an integrated way to gain back visibility and control. It allows you to detect gestating attacks with machinelearned intelligence, and proactively respond to these advanced cyberattacks across any infrastructure – with the enterprise scale to protect millions of users and devices and secure vast amounts of distributed data.","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":4,"sellingCount":14,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Aruba 360 Secure Fabric","keywords":"security, network, access, Aruba, ClearPass, Secure, attacks, control","description":"There are 3 elements to this fabric:\r• Aruba Security Software: Proactive network access control and policy management, and industry-leading UEBA for any","og:title":"Aruba 360 Secure Fabric","og:description":"There are 3 elements to this fabric:\r• Aruba Security Software: Proactive network access control and policy management, and industry-leading UEBA for any","og:image":"https://old.b4r.io/fileadmin/user_upload/Aruba_360_Secure_Fabric.jpg"},"eventUrl":"","translationId":1049,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":333,"logoURL":"https://old.b4r.io/fileadmin/user_upload/Firemon_Security_Manager.png","logo":true,"scheme":false,"title":"Firemon Security Manager","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"firemon-security-manager","companyTitle":"Firemon","companyTypes":["vendor"],"companyId":2738,"companyAlias":"firemon","description":"Security Manager helps enterprises manage their firewalls, routers, switches and load balancers more effectively, by detecting and reporting any changes to firewall policy, increasing visibility and reducing the cost of making changes. Security Manager shows you which of your rules are unused and how traffic flows through each rule, letting you clean up unnecessary access and tighten down existing rules. And with continued, automated analysis of regulations like PCI, HIPAA, SOX, NERC-CIP, ISO 27001, and NSA guidelines, Security Manager greatly improves your compliance posture.\r\nAccess Path Analysis expands visibility of enterprise network behavior by identifying the detailed risk path through the network, including the interfaces, routes, security rules and address translation rules that allow the access path that introduces risk. It gives network security operators the information necessary to make a precise change and reduce risk without impacting network operations. And FireMon Insight, a real-time dashboard, gives users a one-stop view of the critical metrics from across your security configurations.\r\n\r\n","shortDescription":"Security Manager helps enterprises manage their firewalls, routers, switches and load balancers more effectively, by detecting and reporting any changes to firewall policy, increasing visibility and reducing the cost of making changes.","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":10,"sellingCount":15,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Firemon Security Manager","keywords":"rules, Security, network, Manager, your, security, risk, visibility","description":"Security Manager helps enterprises manage their firewalls, routers, switches and load balancers more effectively, by detecting and reporting any changes to","og:title":"Firemon Security Manager","og:description":"Security Manager helps enterprises manage their firewalls, routers, switches and load balancers more effectively, by detecting and reporting any changes to","og:image":"https://old.b4r.io/fileadmin/user_upload/Firemon_Security_Manager.png"},"eventUrl":"","translationId":334,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":489,"title":"Network Security Policy Management","alias":"network-security-policy-management","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/network-security-policy-management.png"},{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":335,"logoURL":"https://old.b4r.io/fileadmin/user_upload/FireEye_FX.jpg","logo":true,"scheme":false,"title":"FireEye FX","vendorVerified":0,"rating":"1.00","implementationsCount":1,"suppliersCount":0,"supplierPartnersCount":0,"alias":"fireeye-fx","companyTitle":"FireEye","companyTypes":["supplier"],"companyId":2739,"companyAlias":"fireeye","description":"File content security, which would cover online file shares, portable file storage and services such as SharePoint, is a significant concern for your networks. Advanced cyber attackers can breach file content security and then launch advanced attacks capable of compromising key systems in an organization.\r\n\r\nFireEye File Content Security (FX Series) products help prevent, detect and respond to cyber attacks by scanning file content for signs of malicious threats. These threats might be brought into an organization from outside sources, such as online file sharing services and portable file storage devices.\r\n\r\nBenefits of File Content Security\r\nPrevent file share-based cyber attacks\r\n\r\nBlock malware discovered in network file storage and content sharing systems\r\nDetect advanced malware\r\n\r\nScan CIFS and NFS-compatible file shares, on-demand or on a schedule, without affecting server performance\r\nLeverage WebDAV protocol to proactively scan SharePoint document management systems\r\nIdentify known and unknown latent malware that bypasses conventional antivirus products\r\nRespond to incidents faster\r\n\r\nScan selected or all files, hard drives and trusted and untrusted file domains\r\nAnalyze a broad set of file types, such as PDF, MS-Office, vCards, ZIP/RAR/TNEF, Quicktime, MP3, Real Player, JPG, PNG\r\nIntegrate with other FireEye cyber security products, sharing and applying intelligence","shortDescription":"FireEye FX – FILE CONTENT SECURITY FX SERIES - Detect and block malicious content that threatens file content security","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":11,"sellingCount":8,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"FireEye FX","keywords":"file, content, cyber, products, such, systems, attacks, storage","description":"File content security, which would cover online file shares, portable file storage and services such as SharePoint, is a significant concern for your networks.","og:title":"FireEye FX","og:description":"File content security, which would cover online file shares, portable file storage and services such as SharePoint, is a significant concern for your networks.","og:image":"https://old.b4r.io/fileadmin/user_upload/FireEye_FX.jpg"},"eventUrl":"","translationId":336,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":467,"title":"Network Forensics","alias":"network-forensics","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/network-expertise.png"},{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1638,"logoURL":"https://old.b4r.io/fileadmin/user_upload/Attivo_Networks.png","logo":true,"scheme":false,"title":"Attivo Networks ThreatDefend Platform™","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"attivo-networks-threatdefend-platformtm","companyTitle":"Attivo Networks","companyTypes":["supplier","vendor"],"companyId":4298,"companyAlias":"attivo-networks","description":"Threat Deception Technology to Detect Threats Early, Accurately & Efficiently The ThreatDefend Deception Platform is a modular solution comprised of Attivo BOTsink® engagement servers, decoys, and deceptions, the ThreatStrikeTM endpoint deception suite, ThreatPathTM for attack path visibility, ThreatOpsTM incident response orchestration playbooks, and the Attivo Central Manager (ACM), which together create a comprehensive early detection and active defense against cyber threats. <span style=\"font-weight: bold;\">WHY CUSTOMERS CHOOSE THREAT DECEPTION</span>\r\n<ul>\r\n<li>EARLY WARNING SYSTEM</li>\r\n<li>ACTIONABLE ALERTS</li>\r\n<li>EASY TO DEPLOY</li>\r\n<li>LOW MAINTENANCE</li>\r\n<li>STRENGTHENS DEFENSES</li>\r\n</ul>\r\nDETECT KNOW & UNKNOWN ATTACKS Not reliant on signatures or pattern matching, the Attivo ThreatDefend solution accurately detects in-network reconnaissance, credential theft, Man-in-the-Middle attacks, and lateral movement of threats that other security controls miss. EARLY & ACCURATE DETECTION Threat deception provides early detection of external, insider, and 3rd party attacks. Achieve real-time threat detection of reconnaissance and credential theft activities as attackers are deceived into engaging with decoys, deception lures, and bait designed to entice hackers into revealing themselves. NO ALERT FATIGUE FROM FALSE POSITIVES High-fidelity alerts are raised based upon attacker decoy engagement or deception credential reuse. Each alert is substantiated with rich threat intelligence and is actionable, removing false positive and noisy alerts that distract from the prompt incident response of real threats. NOT RESOURCE INTENSIVE Easy to deploy and operate, the Attivo solution is design to be low maintenance. Deployment is in hours and doesn’t require highly skilled employees or in-depth resources for ongoing operations. Machine learning, automated analysis, and incident response empower quick remediation. CAMOUFLAGE Realistic deception is key to deceiving attackers into engaging. Dynamic deception provides authenticity and deception campaigns for self-learning deployment and refresh. <span style=\"font-weight: bold;\">Authenticity</span>\r\n<ul>\r\n<li>Customized using real OS and services to production assets</li>\r\n<li>Credential validation with Active Directory</li>\r\n<li>High-interaction engagement</li>\r\n</ul>\r\n<span style=\"font-weight: bold;\">Machine-Learning</span>\r\n<ul>\r\n<li>Self-learning of the environment generates deception campaigns</li>\r\n<li>Campaigns can be deployed on demand for environment refresh</li>\r\n<li>Allows automated refresh to spin up deception or avoid fingerprinting</li>\r\n</ul>\r\n<span style=\"font-weight: bold;\">Easy Operations</span>\r\n<ul>\r\n<li>Simplify deployment with automated campaign proposals</li>\r\n<li>Easy operations with automated refresh</li>\r\n<li>Choice of on demand or automated campaign deployment</li>\r\n</ul>\r\n<span style=\"font-weight: bold;\">FEATURES</span> ThreatDefend is a comprehensive, scalable detection platform designed for the early detection of external threat actors and insiders (employees, suppliers, contractors) and for accelerating incident response. IN-NETWORK THREAT DETECTION Early endpoint, network, application, and data post-compromise threat detection. ATTACK SURFACE SCALABILITY Deception for evolving attack surface: data centers, cloud, user networks, remote office, specialty networks. EASY DEPLOYMENT & OPERATIONS Flexible deployment options and machine-learning for ongoing campaign authenticity and refresh. SUBSTANTIATED ALERTS & FORENSICS Actionable alerts from attacker engagement or credential reuse. Full forensics for actionable response. ATTACK ANALYSIS Automated attack analysis and correlation improves time-to-remediation. THREAT INTELLIGENCE High interaction attacker engagement and DecoyDocs produce threat, adversary, and counterintelligence. ACCELERATED INCIDENT RESPONSE Extensive 3rd party automations accelerate incident response to block, isolate, and threat hunt. ATTACK PATH VULNERABILITY ASSESSMENT Understand attack path vulnerabilities based on exposed credentials and misconfigurations. VISIBILITY & ATTACK MAPS Topographical maps for network visualization and time-lapsed attack replay.","shortDescription":"ThreatDefend Platform™ is Deception Technology for early post-compromise threat detection and accelerated incident response.","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":7,"sellingCount":5,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Attivo Networks ThreatDefend Platform™","keywords":"deception, threat, response, detection, engagement, Attivo, attack, refresh","description":"Threat Deception Technology to Detect Threats Early, Accurately & Efficiently The ThreatDefend Deception Platform is a modular solution comprised of Attivo","og:title":"Attivo Networks ThreatDefend Platform™","og:description":"Threat Deception Technology to Detect Threats Early, Accurately & Efficiently The ThreatDefend Deception Platform is a modular solution comprised of Attivo","og:image":"https://old.b4r.io/fileadmin/user_upload/Attivo_Networks.png"},"eventUrl":"","translationId":1639,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[{"id":28,"title":"Deception Techniques and Honeypots"}],"testingArea":"","categories":[{"id":199,"title":"Deception Techniques and Honeypots","alias":"deception-techniques-and-honeypots","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/simulation-and-trap-technologies.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1640,"logoURL":"https://old.b4r.io/fileadmin/user_upload/CyberTrap.png","logo":true,"scheme":false,"title":"CyberTrap","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"cybertrap","companyTitle":"CyberTrap","companyTypes":["supplier","vendor"],"companyId":4299,"companyAlias":"cybertrap","description":"\r\nOur deception technology is designed with one purpose in mind – to stop attackers from breaching your system and causing damage. Our local threat intelligence feeds help to keep attackers out of your network. CyberTrap offers comfortable, stress-free 24/7 protection while gathering vital intelligence on attacker activities and intent.\r\n\r\n<ul>\r\n<li>Local threat intelligence feeds</li>\r\n<li>Insight on attacker activities</li>\r\n<li>No false positives</li>\r\n</ul>\r\n\r\n<span style=\"font-weight: bold;\">Managed services</span>\r\nOur deception as a managed service has been previously accessible only to large companies. For the first time midsize companies can benefit from deception security in a convenient subscription model that won’t stretch their budget or resources.\r\n\r\n<ul>\r\n<li>No capital investment</li>\r\n<li>No need to hire experts</li>\r\n<li>No overhead costs</li>\r\n</ul>\r\n\r\n<span style=\"font-weight: bold;\">Supported services</span>\r\nLarge enterprises and government agencies are vulnerable to persistent attacks. Such organizations usually have an internal security team which can be supported by CyberTrap. We provide training and assistance to help kickstart your deception operation.\r\n\r\n<ul>\r\n<li>Easy integration with existing security stack</li>\r\n<li>All the necessary training provided</li>\r\n<li>Fast and reliable customer support</li>\r\n</ul>\r\n\r\n<span style=\"font-weight: bold;\">CyberTrap is the solution for your Company</span>\r\nImplementing an extra layer of deception security is the right move for any organization storing valuable, highly sensitive data which hackers desire.\r\n\r\n<ul>\r\n<li>Government & law enforcement agencies</li>\r\n<li>Banking, financial services & insurance (BFSI)</li>\r\n<li>IT, telecom & technology</li>\r\n<li>Utilities & and national critical infrastructure (CNI)</li>\r\n<li>Production plants & manufacturing</li>\r\n<li>E-commerce & retail chains</li>\r\n<li>Healthcare companies</li>\r\n</ul>\r\n\r\n\r\n ","shortDescription":"CyberTrap is a deception technology designed with one purpose in mind – to stop attackers from breaching your system and causing damage. ","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":9,"sellingCount":6,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"CyberTrap","keywords":"deception, your, CyberTrap, security, services, companies, intelligence, feeds","description":"\rOur deception technology is designed with one purpose in mind – to stop attackers from breaching your system and causing damage. Our local threat","og:title":"CyberTrap","og:description":"\rOur deception technology is designed with one purpose in mind – to stop attackers from breaching your system and causing damage. Our local threat","og:image":"https://old.b4r.io/fileadmin/user_upload/CyberTrap.png"},"eventUrl":"","translationId":1641,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[{"id":28,"title":"Deception Techniques and Honeypots"}],"testingArea":"","categories":[{"id":199,"title":"Deception Techniques and Honeypots","alias":"deception-techniques-and-honeypots","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/simulation-and-trap-technologies.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1646,"logoURL":"https://old.b4r.io/fileadmin/user_upload/Cymmetria.png","logo":true,"scheme":false,"title":"Cymmetria’s MazeRunner","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"cymmetrias-mazerunner","companyTitle":"Cymmetria","companyTypes":["supplier","vendor"],"companyId":4300,"companyAlias":"cymmetria","description":"\r\n<ul>\r\n<li>Get reliable detection.MazeRunner leads attackers away from real targets and creates a footprint of the attack</li>\r\n<li>Investigation Forensic.Improve incident response.MazeRunner provides rich forensic data and insights, such as the source of the attack and tools used by the attacker</li>\r\n<li>Real Alerts.Focus on real alerts.MazeRunner generates real, reliable alerts</li>\r\n<li>Mitigation. Quarantine and block attackers. MazeRunner gathers attack information and integrates with existing tools in the organization to quarantine and block attackers</li>\r\n</ul>\r\n","shortDescription":"Cymmetria’s MazeRunner platform lets you dominate an attacker’s movements from the very beginning and lead them to a monitored deception network.","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":17,"sellingCount":8,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Cymmetria’s MazeRunner","keywords":"MazeRunner, attack, attackers, real, reliable, alerts, block, tools","description":"\r\rGet reliable detection.MazeRunner leads attackers away from real targets and creates a footprint of the attack\rInvestigation Forensic.Improve incident","og:title":"Cymmetria’s MazeRunner","og:description":"\r\rGet reliable detection.MazeRunner leads attackers away from real targets and creates a footprint of the attack\rInvestigation Forensic.Improve incident","og:image":"https://old.b4r.io/fileadmin/user_upload/Cymmetria.png"},"eventUrl":"","translationId":1647,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[{"id":28,"title":"Deception Techniques and Honeypots"}],"testingArea":"","categories":[{"id":199,"title":"Deception Techniques and Honeypots","alias":"deception-techniques-and-honeypots","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/simulation-and-trap-technologies.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1648,"logoURL":"https://old.b4r.io/fileadmin/user_upload/GuardiCore.png","logo":true,"scheme":false,"title":"GuardiCore Centra Security Platform","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"guardicore-centra-security-platform","companyTitle":"GuardiCore","companyTypes":["supplier","vendor"],"companyId":4301,"companyAlias":"guardicore","description":"<span style=\"font-weight: bold;\">Reveal Application Flows Across the Infrastructure</span>\r\n<ul> <li>Automatically discover applications and flows</li> <li>Quickly understand application behavior</li> <li>Granular visibility down to the process level</li> </ul>\r\n<span style=\"font-weight: bold;\">Segment with a Powerful Policy Engine</span>\r\n<ul> <li>Define segmentation policies in minutes</li> <li>Automatic policy recommendations</li> <li>Consistent policy expression across any environment</li> </ul>\r\n<span style=\"font-weight: bold;\"><br /></span> <span style=\"font-weight: bold;\">Detect Threats Faster and Simplify Response</span>\r\n<ul> <li>Multiple detection methods cover all types of threats</li> <li>Dynamic deception immediately traps attackers</li> <li>High quality, in-context security incidents with mitigation recommendations to speed incident response</li> </ul>\r\n<span style=\"font-weight: bold;\"><br /></span> <span style=\"font-weight: bold;\">Protection For Your Entire Infrastructure, Built and Proven for Cloud Scale</span> <span style=\"font-weight: bold;\"><br /></span>\r\n<ul> <li>Hybrid Cloud. Workload protection in hybrid cloud environments that span on-premises workloads, VMs, containers and deployments in public cloud IaaS including AWS, Azure and GCP.</li> <li>Simplify Security. Simplify security management with one platform that provides flow visibility, micro-segmentation, threat detection and incident response.</li> <li>Enterprise Scalability. Scalable to meet the performance and security requirements of any sized environment</li> </ul>","shortDescription":"GuardiCore Centra Security Platform Designed to Detect Threats and Lateral Movements with Greater Visibility and Micro-Segmentation","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":3,"sellingCount":16,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"GuardiCore Centra Security Platform","keywords":"with, Simplify, security, policy, Cloud, that, response, cloud","description":"Reveal Application Flows Across the Infrastructure\r Automatically discover applications and flows Quickly understand application behavior Granular visibility","og:title":"GuardiCore Centra Security Platform","og:description":"Reveal Application Flows Across the Infrastructure\r Automatically discover applications and flows Quickly understand application behavior Granular visibility","og:image":"https://old.b4r.io/fileadmin/user_upload/GuardiCore.png"},"eventUrl":"","translationId":1649,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[{"id":28,"title":"Deception Techniques and Honeypots"}],"testingArea":"","categories":[{"id":199,"title":"Deception Techniques and Honeypots","alias":"deception-techniques-and-honeypots","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/simulation-and-trap-technologies.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1650,"logoURL":"https://old.b4r.io/fileadmin/user_upload/illusive_networks.jpg","logo":true,"scheme":false,"title":"Illusive Platform","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"illusive-platform","companyTitle":"illusive networks","companyTypes":["supplier","vendor"],"companyId":4302,"companyAlias":"illusive-networks","description":"Strengthen your resistance and—when attackers get in—cut them off before they reach your critical assets. Rapid, Sustainable Reduction of Cyber Attack Risk <span style=\"font-weight: bold;\">Protection from Targeted Attacks</span> The Illusive platform is purpose-built to counter the methods of advanced attackers—while also alleviating burden on security teams. Illusive’s featherweight solution helps you:\r\n<ul>\r\n<li>Understand your attack risk posture</li>\r\n<li>Harden the environment</li>\r\n<li>Detect attackers early</li>\r\n<li>Resolve incidents before attackers succeed</li>\r\n</ul>\r\n<span style=\"font-weight: bold;\">See Your World as an Attacker Would</span> Attackers want to know how they can advance from one system to another and where to find your coveted crown jewels. Attacker View maps your network as the attacker wants to see it—putting you steps ahead. Illusive’s Risk Dashboard analyzes how susceptible you are to a targeted attack and helps you improve the protective power of your deception environment.","shortDescription":"Illusive Platform proactively stop targeted attacks and Advanced Persistent Threats (APTs). Strengthen your resistance and—when attackers get in—cut them off before they reach your critical assets.","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":8,"sellingCount":5,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Illusive Platform","keywords":"your, attackers, from, Risk, Illusives, Illusive, Attacker, environment","description":"Strengthen your resistance and—when attackers get in—cut them off before they reach your critical assets. Rapid, Sustainable Reduction of Cyber","og:title":"Illusive Platform","og:description":"Strengthen your resistance and—when attackers get in—cut them off before they reach your critical assets. Rapid, Sustainable Reduction of Cyber","og:image":"https://old.b4r.io/fileadmin/user_upload/illusive_networks.jpg"},"eventUrl":"","translationId":1651,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[{"id":28,"title":"Deception Techniques and Honeypots"}],"testingArea":"","categories":[{"id":199,"title":"Deception Techniques and Honeypots","alias":"deception-techniques-and-honeypots","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/simulation-and-trap-technologies.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1652,"logoURL":"https://old.b4r.io/fileadmin/user_upload/Acalvio.png","logo":true,"scheme":false,"title":"Acalvio Shadowplex","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"acalvio-shadowplex","companyTitle":"Acalvio","companyTypes":["supplier","vendor"],"companyId":4303,"companyAlias":"acalvio","description":"ShadowPlex Autonomous Deception\r\n<ul>\r\n<li>Accurate Detection</li>\r\n<li>Timely Detection</li>\r\n<li>Cost-Effective Detection</li>\r\n</ul>\r\nShadowPlex is designed for Enterprise IT, IoT and ICS environments and based on patented innovations. <span style=\"font-weight: bold;\">Deception Farms</span> Deception-farms is a seminal innovation that delivers scale and adaptability. Sensors are placed in the network segments. All decoys are born and live in a centralized virtual server farm. They are projected onto the network, thus optimizing resource consumption and delivers flexibility. <span style=\"font-weight: bold;\">Fluid Deception</span> Fluid Deception is a patented technology that achieves resource efficiency by just in time decoy creation, minimizing costs, maximizing effectiveness. No longer do you have to choose between emulation and full host decoys. <span style=\"font-weight: bold;\">Security Ecosystem Integrations</span> ShadowPlex provides comprehensive API support allowing Deception campaigns to be orchestrated from other environments. This also facilitates integration with 3rd party security tools such as:\r\n<ul>\r\n<li>Threat Intelligence</li>\r\n<li>IT Change Management platforms</li>\r\n<li>SOAR (Security Orchestration and Response)</li>\r\n<li>SIEM</li>\r\n<li>Perimeter Defense</li>\r\n<li>NAC (Network Access Control)</li>\r\n<li>Vulnerability Managers</li>\r\n<li>SSO, Identity Management, Privileged User Management Systems</li>\r\n<li>EDR, End-point</li>\r\n</ul>\r\n","shortDescription":"ShadowPlex is an Autonomous, Enterprise-Scale Distributed Deception Platform (DDP)","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":4,"sellingCount":0,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Acalvio Shadowplex","keywords":"Deception, Detection, Management, ShadowPlex, that, delivers, network, Fluid","description":"ShadowPlex Autonomous Deception\r\rAccurate Detection\rTimely Detection\rCost-Effective Detection\r\rShadowPlex is designed for Enterprise IT, IoT and ICS","og:title":"Acalvio Shadowplex","og:description":"ShadowPlex Autonomous Deception\r\rAccurate Detection\rTimely Detection\rCost-Effective Detection\r\rShadowPlex is designed for Enterprise IT, IoT and ICS","og:image":"https://old.b4r.io/fileadmin/user_upload/Acalvio.png"},"eventUrl":"","translationId":1653,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[{"id":28,"title":"Deception Techniques and Honeypots"}],"testingArea":"","categories":[{"id":199,"title":"Deception Techniques and Honeypots","alias":"deception-techniques-and-honeypots","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/simulation-and-trap-technologies.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1654,"logoURL":"https://old.b4r.io/fileadmin/user_upload/FIDELIS.PNG","logo":true,"scheme":false,"title":"Fidelis Elevate","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"fidelis-elevate","companyTitle":"Fidelis","companyTypes":["supplier","vendor"],"companyId":4312,"companyAlias":"fidelis","description":"Fidelis Elevate™\r\n<ul>\r\n<li>Automate Detection</li>\r\n<li>Automate Response</li>\r\n<li>Prevent Data Theft</li>\r\n</ul>\r\n<span style=\"font-weight: bold;\">Elevate Security Operations</span> Even with many prevention tools in place, organizations are still getting breached. That's why more organizations are shifting from a prevention-focused approach to a detection and response strategy. Fidelis Elevate is the only security operations platform that provides deep visibility, threat intelligence and context across complex environments to automate detection and response. <span style=\"font-weight: bold;\">A Force Multiplier for Your Security Operations</span> Fidelis Elevate™ integrates network visibility, data loss prevention, deception, and endpoint detection and response into one unified solution. Now your security team can focus on the most urgent threats and protect sensitive data rather than spending time validating and triaging thousands of alerts. <span style=\"font-weight: bold;\">Enhance Your Visibility and Detection Capabilities</span>\r\n<ul>\r\n<li>Enrich alerts with data and context from Fidelis Network®, Fidelis Endpoint®, and Fidelis Deception™ – all in a unified platform</li>\r\n<li>Combine threat intelligence, sandboxing, machine learning, deception, and Fidelis research</li>\r\n<li>Capture and store metadata for analysis and threat hunting</li>\r\n</ul>\r\n<span style=\"font-weight: bold;\">Automate Response for Quick and Effective Resolution</span>\r\n<ul>\r\n<li>Draw conclusions with accuracy by automatically collapsing many alerts and events into a single view</li>\r\n<li>Automatically validate network alerts on the endpoint with certainty</li>\r\n<li>Raise the priority level when evidence is found of increased risk</li>\r\n<li>Automatically execute a response playbook to jumpstart your investigation with clarity</li>\r\n<li>Stop data leakage, command and control, and active attacks</li>\r\n</ul>\r\n<span style=\"font-weight: bold;\">Ensure Best-of-Breed Breach Detection and Network DLP</span> Fidelis Network® provides deep visibility – across sessions, packets, and content – and automatically validates, correlates, and consolidates network alerts against every endpoint in your network for fast response. <span style=\"font-weight: bold;\">Automate Endpoint Detection and Response</span> Fidelis Endpoint® increases endpoint visibility, reduces response time from hours to minutes and enhances endpoint protection. <span style=\"font-weight: bold;\"><br /></span> <span style=\"font-weight: bold;\">Detect Post-Breach Attacks With an Active Deception Defense</span> Fidelis Deception™ automatically profiles networks and assets to create deception layers that are as realistic as possible to detect post-breach attacks. <span style=\"font-weight: bold;\">Fidelis Network Module</span> Leverage Curated Threat Intelligence for More Accurate Detection Fidelis Insight™ analyzes real-time and historical data, so you can rapidly detect and respond to threats in your environment, even when they happened in the past.","shortDescription":"Fidelis Elevate is one unified platform ensures faster detection and automated response – providing accuracy, clarity and certainty for your cyber security team.","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":8,"sellingCount":13,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Fidelis Elevate","keywords":"Fidelis, response, alerts, endpoint, with, data, Detection, Elevate","description":"Fidelis Elevate™\r\rAutomate Detection\rAutomate Response\rPrevent Data Theft\r\rElevate Security Operations Even with many prevention tools in place,","og:title":"Fidelis Elevate","og:description":"Fidelis Elevate™\r\rAutomate Detection\rAutomate Response\rPrevent Data Theft\r\rElevate Security Operations Even with many prevention tools in place,","og:image":"https://old.b4r.io/fileadmin/user_upload/FIDELIS.PNG"},"eventUrl":"","translationId":1655,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[{"id":28,"title":"Deception Techniques and Honeypots"}],"testingArea":"","categories":[{"id":199,"title":"Deception Techniques and Honeypots","alias":"deception-techniques-and-honeypots","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/simulation-and-trap-technologies.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1656,"logoURL":"https://old.b4r.io/fileadmin/user_upload/Smokescreen.png","logo":true,"scheme":false,"title":"IllusionBLACK","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"illusionblack","companyTitle":"Smokescreen","companyTypes":["supplier","vendor"],"companyId":4313,"companyAlias":"smokescreen","description":"Stop Advanced Cyber Threats With Deception Technology By deploying hundreds of unique deception tripwires, IllusionBLACK maximises attack detection through the kill-chain, even against stealthy, targeted campaigns that don’t involve malware. From targeted threat intelligence of an impending attack, to detecting lateral movement in every single subnet, Smokescreen’s deception technology helps turn the tables on apex attackers. <span style=\"font-weight: bold;\">Full Kill-Chain Coverage</span> IllusionBLACK decoys detect pre-attack reconnaissance, spear-phishing attacks, privilege escalation, lateral movement and data-theft. <span style=\"font-weight: bold;\">Deep Network Visibility</span> Instantly deploy 100's of individually unique, customisable traps across all your endpoints and in every single subnet of your network. <span style=\"font-weight: bold;\">Attack Vector Agnostic</span> Deception does not rely on static signatures or heuristics to identify attacks, so it stays effective no matter what the bad guys try tomorrow. IllusionBLACK detects threats no matter what they attack It has advanced 3rd generation deception features, including…\r\n<ul>\r\n<li>MirageMaker™. Realistic auto-created decoy data fills deceptive assets with always unique, instantly changing content.</li>\r\n<li>ThreatParse™. Natural language attack reconstruction parses raw attack data into plain-English attack analysis.</li>\r\n<li>Automated triage. Agentless investigation of compromised endpoints to reduce root cause analysis time and capture volatile forensic information.</li>\r\n<li>WebDeflect™. Integrate deception into any web or mobile application to guard against business logic attacks.</li>\r\n<li>ThreatDeflect™. Redirect attacks to decoy cloud environments to keep attackers engaged while containment kicks in.</li>\r\n<li>Forensic preservation. All evidence recorded and preserved for further analysis in industry standard formats.</li>\r\n<li>Smart Integrations. Logic-driven automatic response and orchestration to execute response strategies at wire-speed.</li>\r\n<li>Hardened BSD UNIX base. Rock-solid security built for highly-targeted environments, coupled with BSD UNIX's legendary reliability.</li>\r\n<li>Threat intelligence export. Machine consumable through STIX, JSON and CSV, as well as integrations with other security infrastructure.</li>\r\n</ul>\r\n","shortDescription":"IllusionBLACK features rapid out-of-band deployment, no performance impact, enterprise scalability, and minimal false positives","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":3,"sellingCount":7,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"IllusionBLACK","keywords":"attack, deception, IllusionBLACK, attacks, analysis, unique, with, response","description":"Stop Advanced Cyber Threats With Deception Technology By deploying hundreds of unique deception tripwires, IllusionBLACK maximises attack detection through the","og:title":"IllusionBLACK","og:description":"Stop Advanced Cyber Threats With Deception Technology By deploying hundreds of unique deception tripwires, IllusionBLACK maximises attack detection through the","og:image":"https://old.b4r.io/fileadmin/user_upload/Smokescreen.png"},"eventUrl":"","translationId":1657,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[{"id":28,"title":"Deception Techniques and Honeypots"}],"testingArea":"","categories":[{"id":199,"title":"Deception Techniques and Honeypots","alias":"deception-techniques-and-honeypots","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/simulation-and-trap-technologies.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1179,"logoURL":"https://old.b4r.io/fileadmin/user_upload/Group-IB_Threat_Intelligence.png","logo":true,"scheme":false,"title":"Group-IB Threat Intelligence (Киберразведка по подписке)","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"group-ib-threat-intelligence-kiberrazvedka-po-podpiske","companyTitle":"Group-IB","companyTypes":["supplier","vendor"],"companyId":4067,"companyAlias":"group-ib","description":"Оперативные уведомления об атаках и угрозах для вас, ваших клиентов и партнеров Прямой доступ к скомпрометированным данным и идентификаторам Отслеживание, разбор и прогнозирование хакерской активности в интересных вам отраслях\r\nНаглядный веб-интерфейс – не требует установки Поддержка STIX/TAXII при предоставлении данных об угрозах, API для Enterprise Security Персональный аналитик и круглосуточная поддержка\r\nДанные для проактивной защиты от киберугроз\r\nЗанимаясь расследованием киберпреступлений и изучением угроз более 14 лет, Group-IB создала собственную высокотехнологичную систему слежения за инфраструктурой и взаимодействиями киберпреступников, управляемую опытными аналитиками, практикующими криминалистами и специалистами по реагированию на инциденты.\r\n\r\nОбрабатывая и анализируя данные из сотен источников, мы предоставляем персонализированную, проверенную и значимую информацию, необходимую для подготовки к атакам и отражению актуальных угроз.\r\nДанные для проактивной защиты от киберугроз\r\nТактические индикаторы\r\nСократите время реакции на инциденты до минимума с мгновенными уведомлениями о критических угрозах, прямым доступом к скомпрометированным данным и целому спектру технических индикаторов для настройки средств защиты.\r\nВАШИ ВОЗМОЖНОСТИ\r\nОперативно блокируйте скомпрометированные учетные записи, банковские карты, узнавайте о заражениях мобильных телефонов\r\nНаходите вредоносные объекты, не детектируемые антивирусами, изучайте их происхождение и назначение\r\nВыявляйте зараженных пользователей корпоративной сети, связывающихся с серверами управления ботнетами \r\nБлокируйте вредоносные ресурсы на сетевом оборудовании\r\nПредотвращайте распространение фишинговых писем по корпоративной почте\r\nПресекайте использование вашего бренда в преступных целях\r\n\r\nОперативные данные\r\nПолучайте персонализированные данные с закрытых хакерских площадок, узнавая о предстоящих атаках на этапе их подготовки.\r\n\r\nПогрузитесь в детализированный контекст угроз, отслеживайте появление новых инструментов и методов атак, которые могут быть использованы против вас.\r\nВАШИ ВОЗМОЖНОСТИ\r\nОперативно узнавайте о появлении вредоносных программ, нацеленных на вас и ваших клиентов\r\nУзнавайте об утечках, продажах баз данных, поиске инсайдеров в вашей компании и обсуждениях ее уязвимостей\r\nПредотвращайте продажу закрытых данных третьим лицам\r\nСледите за атаками и всплесками активности, устанавливая взаимосвязи с вашими инцидентами\r\nКорректируйте карту угроз и план реагирования, базируясь на актуальной информации\r\n\r\nСтратегическая информация\r\nСледите за постоянно меняющейся средой киберугроз, изучайте риски, характерные для компаний вашей отрасли, оцениваете эффективность и корректируйте вашу стратегию инвестиций в обеспечение информационной безопасности.\r\nВАШИ ВОЗМОЖНОСТИ\r\nМаксимизируйте ROI от инвестиций в системы безопасности, Incident Response команды и аналитиков\r\nПриоритизируйте угрозы и выбирайте решения для защиты на основании экспертных прогнозов\r\nИзучайте тактику и инструменты преступных групп, атакующих компании вашей отрасли\r\nСобирайте дополнительные сведения об угрозах с помощью персонального аналитика\r\nКак работает Threat Intelligence?\r\nThreat Intelligence — сочетание высокотехнологичной инфраструктуры мониторинга киберугроз с экспертизой опытных аналитиков, вирусологов, криминалистов, специалистов отдела расследований и Центра реагирования (CERT) Group-IB.\r\nКиберразведка для проактивной защиты от киберугроз\r\nРазведка и сбор данных\r\nМы создали высокотехнологичную инфраструктуру для мониторинга хакерской активности, слежения за ботсетями и извлечения данных, необходимых для предотвращения инцидентов. 90% данных поступает в систему из закрытых источников, абсолютное большинство из них – уникально. Мы мониторим закрытые площадки, следим за изменениями бот-сетей, извлекая конфигурационные файлы вредоносных программ и информацию об украденных идентификаторах.\r\nИСТОЧНИКИ ДАННЫХ\r\n<ul><li>Распределенная сеть мониторинга и HoneyNet ловушек</li><li>Аналитика бот-сетей</li><li>Закрытые и публичные хакерские площадки, онлайн-конференции</li><li>Приватные группы в соцсетях</li><li>Трекеры сетевых атак</li><li>Данные сенсоров Threat Detection System</li><li>Результаты криминалистических экспертиз Лаборатории Group-IB</li><li>Мониторинг и исследование вредоносных программ</li><li>База обращений в Центр реагирования CERT‑GIB</li><li>Результаты поведенческого анализа вредоносных файлов с помощью машинного интеллекта</li><li>Контакты с регисторами доменных имен и хостинг-провайдерами по всему миру</li><li>Обмен данными с Europol, Interpol и объединениями по противодействию киберугрозам</li><li>Целевые исследования Group-IB</li></ul>\r\nАналитика\r\n13 лет отслеживая развитие киберпреступной среды, мы накопили практический опыт и базу знаний, которые позволяют нам видеть в разрозненных потоках данных скрытые связи и угрозы, которые оставляют без внимания наши конкуренты.\r\nНАПРАВЛЕНИЯ АНАЛИЗА\r\n<ul><li>Проверка данных и сбор дополнительных сведений</li><li>Реконструкция сценариев атак</li><li>Исследования вредоносных программ</li><li>Установление взаимосвязей между преступными группами</li><li>Отслеживание трендов, формирование прогнозов</li><li>Разработка рекомендаций по реагированию</li></ul>\r\nПредоставление данных\r\nДанные в системе Threat Intelligence сгруппированы по подпискам, что дает возможность получать именно те сведения, которые вам необходимы.\r\n\r\n<span style=\"font-weight: bold;\">Уведомления об отраслевых и целевых угрозах</span>\r\nПостоянно участвуя в расследованиях и реагировании на инциденты, мы узнаем о новых угрозах из первых рук. Кроме того, мы имеем доступ к сотням закрытых хакерских сообществ, что позволяет нам следить за их активностью и доставлять эти знания нашим заказчикам.\r\n\r\nК сведениям об угрозах относятся:\r\n<ul><li>сведения о новых вредоносных программе или сервисах для хакерского сообщества,</li><li>изменения в тактике проведения атак,</li><li>утечки и продажи корпоративных данных,</li><li>объявления о поиске инсайдеров в разных компаниях или исполнителей атак,</li><li>обсуждение уязвимостей.</li></ul>\r\nЭксклюзивные разведданные Threat Intelligence позволяют спрогнозировать неочевидные риски, узнать о предстоящих атаках на этапе их подготовки, адаптировать план реагирования и минимизировать ущерб, если украденные данные уже попали в сеть.\r\n\r\nПри необходимости ваш персональный аналитик может собрать дополнительную информацию об актуальных угрозах и проверить достоверность данных.\r\n\r\n<span style=\"font-weight: bold;\">Уведомления о целевых вредоносных программах</span>\r\nЕжедневно мы исследуем сотни вредоносных файлов и участвуем в расследованиях инцидентов, застрагивающих компании самых разных отраслей. Это позволяет нам обнаруживать и извлекать подробные данные о вредоносных программах, нацеленных на вас и ваших клиентов.\r\n\r\nЕсли мы видим, что вредоносная программа имеет файл настроек, затрагивающих ваши системы, IP‑адреса, домены или телефоны, вы немедленно узнаете об этом.\r\n\r\nДаже если программа не имеет соответствующих настроек, но в результате реагирования на инцидент мы узнали, что она может быть использована для атаки на вас, вы также получите подробные сведения об этой программе, включая:\r\n<ul><li>хеш-сумму вредоносного файла,</li><li>полное описание функциональных возможностей вредоносной программы,</li><li>копию файла настроек или веб-инжектов,</li><li>адреса серверов управления (C&C) и обновлений.</li></ul>\r\n<span style=\"font-weight: bold;\">Данные о фишинговых сайтах, использующих ваш бренд</span>\r\nПреступники используют доверие клиентов к вашему бренду, выманивая с его помощью личные данные и вовлекая пользователей в мошеннические схемы. Мы узнаем о появлении потенциально опасного для вашей репутации сайтов на этапе регистрации доменов, и выявляем всю инфраструктуру их продвижения – e-mail рассылки, контекстную рекламу, инструменты SEO-оптимизации.\r\n\r\nКорреляция используемых злоумышленников инструментов с базой системы киберразведки Threat Intelligence помогает становить владельца площадки, выявить взаимосвязи между разными площадками и извлечь другие данные, необходимые для реагирования и расследования.\r\n\r\nЭто позволяет нам адресно уведомлять владельцев площадок о нарушении ваших прав и оперативно блокировать ресурсы по вашему запросу, полностью закрывая преступникам доступ к их инфраструктуре.\r\n\r\n<span style=\"font-weight: bold;\">Уведомления о компрометации учетных записей, банковских карт, ключей ЭЦП</span>\r\nМы исследуем сетевые инфраструктуры бот-сетей и применяем специальные технические меры для оперативного извлечения скомпрометированных идентификаторов ваших клиентов и сотрудников:\r\n<ul><li>учетные записи, ассоциированные с корпоративными доменами и диапазонами IP: e-mail аккаунты, доступы к intranet-ресурсам и т.д.</li><li>номера банковских карт,</li><li>копии ключей электронной цифровой подписи.</li></ul>\r\nМы также предоставляем сведениях о счетах, картах и телефонах, на которые преступники переводят похищаемые денежные средства.\r\n\r\nВы получите широкий спектр дополнительных сведений, помогающих понять стратегию и тактику компрометации данных:\r\n<ul><li>дата детектирования скомпрометированной учетной записи,</li><li>источник получения данных (серверы, адреса для управления бот-сетью),</li><li>информация о расположении и IP зараженного пользователя,</li><li>название и подробное описание вредоносной программы, использованной злоумышленниками,</li><li>название преступной группы и тактика ее действий,</li><li>фото-отчеты осмотров панелей управления бот‑сетями.</li></ul>\r\n<span style=\"font-weight: bold;\">Уведомления о заражении мобильных устройств</span>\r\nПопулярность финансовых приложений для мобильных телефонов и планшетов на фоне слабой защищенности таких устройств делают их самой привлекательной мишенью для хакеров. Каждый месяц появляется несколько новых вредоносных программ под мобильные операционные системы, а функционал известных вирусов усложняется. Заражение телефона может дать доступ не только к финансам владельца, но и к его почте, звонкам, сообщениям, а также данным о его передвижениях.\r\n\r\nМы предоставляем регулярно обновляемые списки зараженных мобильных устройств ваших клиентов и сотрудников, идентифицируемых по IMEI. Оперативные уведомления о заражениях позволят не только предотвратить хищения, но и выявить попытки шпионажа за руководством компании.\r\n\r\nСообщите нам обезличенный список корпоративных устройств, и если одно из них будет найдено в мобильной бот-сети, мы установим факт слежки немедленно.\r\n\r\n<span style=\"font-weight: bold;\">Сведения об атаках</span>\r\nЧерез нашу систему ловушек и сетевые сенсоры ежедневно проходят тысячи атак на компании из разных отраслей. В режиме реального времени мы предоставляем доступ к данным о следующих атаках:\r\n<ul><li>списки целей DDoS-атак,</li><li>cписки сайтов с размещенным фишинговым контентом,</li><li>списки взломанных сайтов, распространяющих вредоносные программы,</li><li>списки сайтов, подвергшихся deface-атакам.</li><li>Для распространения вредоносных программ хакеры часто используют метод Driveby, который заключается в заражении пользователей легитимных сайтов, ни посетители, ни администраторы которого не догадываются об активности преступников. Благодаря своевременному получению данных о взломанных сайтах возможно полностью предотвратить такие атаки.</li></ul>\r\nИнформация об атакованных ресурсах делятся по странам и отраслям, чтобы вы могли анализировать данные по тем секторам, к которым относится ваша компания, ее партнеры или клиенты.\r\n\r\n<span style=\"font-weight: bold;\">Сведения о хактивистских группировках и их активности, включая данные:</span>\r\n<ul><li>о начале новой операции,</li><li>о результатах успешных атак в рамках отдельной операции или независимо от нее,</li><li>о тактике и инструментах каждой атаки,</li><li>о связях между разными группами.</li><li>Информация позволит взвешенно оценить риски быть атакованными в рамках определенной операции, смоделировать возможный инцидент и подготовиться к нему.</li><li>Подозрительные IP-адреса</li></ul>","shortDescription":"Узнавайте об угрозах, утечках, взломах и хакерской активности до того, как они смогут вам навредить","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":20,"sellingCount":18,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Group-IB Threat Intelligence (Киберразведка по подписке)","keywords":"данных, вредоносных, данные, угрозах, Threat, реагирования, клиентов, Intelligence","description":"Оперативные уведомления об атаках и угрозах для вас, ваших клиентов и партнеров Прямой доступ к скомпрометированным данным и идентификаторам Отслеживание,","og:title":"Group-IB Threat Intelligence (Киберразведка по подписке)","og:description":"Оперативные уведомления об атаках и угрозах для вас, ваших клиентов и партнеров Прямой доступ к скомпрометированным данным и идентификаторам Отслеживание,","og:image":"https://old.b4r.io/fileadmin/user_upload/Group-IB_Threat_Intelligence.png"},"eventUrl":"","translationId":2655,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":42,"title":"UTM - Unified threat management","alias":"utm-unified-threat-management","description":"Межсетево́й экра́н, сетево́й экра́н — это комплекс аппаратных и программных средств в компьютерной сети, осуществляющий контроль и фильтрацию проходящих через него сетевых пакетов в соответствии с заданными правилами.\r\n\r\nОсновной задачей сетевого экрана является защита сети или отдельных её узлов от несанкционированного доступа. Также сетевые экраны часто называют фильтрами, так как их основная задача — не пропускать (фильтровать) пакеты, не подходящие под критерии, определённые в конфигурации.\r\n\r\nНекоторые сетевые экраны также позволяют осуществлять трансляцию адресов — динамическую замену внутрисетевых (серых) адресов или портов на внешние, используемые за пределами локальной сети, что может обеспечивать дополнительную безопасность.\r\n\r\nИсточник: https://ru.wikipedia.org/wiki/%D0%9C%D0%B5%D0%B6%D1%81%D0%B5%D1%82%D0%B5%D0%B2%D0%BE%D0%B9_%D1%8D%D0%BA%D1%80%D0%B0%D0%BD","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/Firewall__2_.png"},{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"},{"id":335,"title":"Secure Content and Threat Management","alias":"secure-content-and-threat-management","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/content-security-management.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1180,"logoURL":"https://old.b4r.io/fileadmin/user_upload/Group-IB_Threat_Intelligence.png","logo":true,"scheme":false,"title":"Group-IB Threat Intelligence","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"group-ib-threat-intelligence","companyTitle":"Group-IB","companyTypes":["supplier","vendor"],"companyId":4067,"companyAlias":"group-ib","description":"<ul><li>Prompt attack and threat notifications for your company, clients and partners</li><li>Direct access to compromised data and TTPs of malicious activity</li><li>Detections, analysis and forecasts of hacking activity in the areas of your interest</li><li>Convenient web interface for data search and analysis – no installation required</li><li>STIX/TAXII ready, official OASIS Cyber Threat Intelligence (CTI) Technical Committee Member</li><li>24x7 Personal cyber intelligence analyst support: tailored reports, malware analysis and much more</li></ul>\r\nWe give you vital intelligence about upcoming threats and actual cyber security risks\r\nIt takes a few minutes to infect a computer, while incident detection and remediation activities may last months. Even if you feel confident in your systems' safety, vulnerabilities of your clients, employees, or partners may become your problem – this potential threat has become a reality for financial institutions, payment systems and telecommunications operators. Security breach in a company of your industry may be a warning sign of future attacks on your business, while insiders will help criminals bypass your defensive barriers.\r\nBe prepared to any attack scenario with Intelligence cyber analytics: receive the most specific and detailed information for prompt response and the most recent data for threat prevention.\r\n<span style=\"font-weight: bold; \">Strategic planning with cyber intelligence</span>\r\nKeep up with the constantly changing threat landscape, learn about threats targeting your business area, evaluate and improve your IT security investment strategy\r\n<ul><li>Evaluate risks, analyze statistics and assess potential damages</li><li>Prioritize threats based on expert forecasts</li><li>Learn attack tactics and cybercrime strategy</li><li>Know your enemy</li></ul>\r\n<span style=\"font-weight: bold;\">Taking control on upcoming cyber threats</span>\r\nPrepare for cyber attacks with comprehensive information on malware threatening your company and clients, attack targets and methods, cyber espionage tools, news and notifications on potential threats from private hacker resources.\r\n\r\n<ul><li>Adapt your security tools and response plans</li><li>Learn about data leaks and identify insiders</li><li>Prevent confidential data from being sold to third parties</li><li>Monitor hacking attacks and activity peaks correlating with your incidents</li><li>Apply IoCs to you layered cyber security infrastructure</li></ul>\r\nMinimize the time you spend on incident response with instant notifications to critical threats, direct access to compromised data and a variety of technical indicators used to bolster your security.\r\n\r\n<ul><li>Protect your clients, employees, and partners against fraud and personal data theft</li><li>Receive attack confirmation, learn about the attack source and mechanisms used</li><li>Prevent leakage and industrial espionage</li><li>Effectively stop targeted attacks</li><li>Prevent illegal use of your brand</li></ul>\r\n<span style=\"font-weight: bold;\">Intelligence and data collection</span>\r\nGroup-IB specialists daily analyze thousands of compromised credentials, bank card numbers, messages and postings of “black hats” on deep web hacking forums, information on hundreds of attacks. We analyze the most recent malware, attack mechanisms and participate in incident investigations collecting the most recent and detailed information about cybercriminals, their strategies and tools.\r\nTHREE PILLARS OF COMPETENCEWHAT’S SPECIAL\r\n\r\n<ul><li>More than 10 patented technologies, automation and special tactics, algorithms and machine learning are helping us to collect raw data on cyber threats.</li><li>Best analysts are making intelligence out of threat data, enriching them with context, revealing kill chains and TTPs (tactics, technics and procedures) of cyber criminals.</li><li>Building links between incidents, IoCs and cyber criminals activities all over the world with the help of CERTs, Europol, Interpol and other international cyber crime fighters.</li></ul>\r\n<span style=\"font-weight: bold;\">Analytics</span>\r\nGroup-IB leverages its 14 years of unique expertise in cybercrime investigations to discover hidden connections buried within disparate data. We closely cooperate with best experts in cyber security around the world, which helps us to solve the most complicated global cases. Information analysis enables us to understand motives of criminals and create hacker profiles to forecast their future activity.\r\n<ul><li>Deep knowledge of Russian-speaking and international cybercriminal markets</li><li>Adjustable amount of hours of remote analysts</li><li>Ability to request assistance from special team of Group-IB security experts responsible for handling high-profile investigations</li></ul>","shortDescription":"Must have cyber intelligence \r\nservice to mitigate cyber threats\r\nLearn about threats, leaks, attacks, and hacking activity before they can harm your business\r\n","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":17,"sellingCount":15,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Group-IB Threat Intelligence","keywords":"your, cyber, data, with, attack, threats, security, about","description":"Prompt attack and threat notifications for your company, clients and partnersDirect access to compromised data and TTPs of malicious activityDetections,","og:title":"Group-IB Threat Intelligence","og:description":"Prompt attack and threat notifications for your company, clients and partnersDirect access to compromised data and TTPs of malicious activityDetections,","og:image":"https://old.b4r.io/fileadmin/user_upload/Group-IB_Threat_Intelligence.png"},"eventUrl":"","translationId":1180,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":42,"title":"UTM - Unified threat management","alias":"utm-unified-threat-management","description":"Межсетево́й экра́н, сетево́й экра́н — это комплекс аппаратных и программных средств в компьютерной сети, осуществляющий контроль и фильтрацию проходящих через него сетевых пакетов в соответствии с заданными правилами.\r\n\r\nОсновной задачей сетевого экрана является защита сети или отдельных её узлов от несанкционированного доступа. Также сетевые экраны часто называют фильтрами, так как их основная задача — не пропускать (фильтровать) пакеты, не подходящие под критерии, определённые в конфигурации.\r\n\r\nНекоторые сетевые экраны также позволяют осуществлять трансляцию адресов — динамическую замену внутрисетевых (серых) адресов или портов на внешние, используемые за пределами локальной сети, что может обеспечивать дополнительную безопасность.\r\n\r\nИсточник: https://ru.wikipedia.org/wiki/%D0%9C%D0%B5%D0%B6%D1%81%D0%B5%D1%82%D0%B5%D0%B2%D0%BE%D0%B9_%D1%8D%D0%BA%D1%80%D0%B0%D0%BD","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/Firewall__2_.png"},{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"},{"id":335,"title":"Secure Content and Threat Management","alias":"secure-content-and-threat-management","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/content-security-management.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1182,"logoURL":"https://old.b4r.io/fileadmin/user_upload/TDS_-_obnaruzhenie_celevykh_atak.png","logo":true,"scheme":false,"title":"Group-IB TDS — обнаружение целевых атак","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"group-ib-tds-obnaruzhenie-celevykh-atak","companyTitle":"Group-IB","companyTypes":["supplier","vendor"],"companyId":4067,"companyAlias":"group-ib","description":"<ul><li>Мгновенные уведомления об активности всех актуальных и ранее неизвестных семейств вредоносных программ </li><li>Определение зараженных мобильных устройств сотрудников и гостей </li><li>в Wi-Fi сетях </li><li>Ручной анализ логов и выделение критически важных инцидентов </li><li>экспертами Group-IB</li><li>Удобный веб-интерфейс и наглядные отчеты о выявленных угрозах </li><li>Регулярно обновляемый классификатор на основе данных, накопленных за 14 лет расследований и экспертиз </li><li>Круглосуточная поддержка и консультации через удобную тикет-систему</li></ul>\r\n\r\n<span style=\"font-weight: bold;\">Зачем нужен TDS</span>\r\nКитайское шпионское ПО, трояны Corkow, Anunak и Buhtrap, более 100 видов вредоносных программ под мобильные платформы - все эти угрозы агрессивно атакуют российский бизнес и компании государственного сектора, несмотря на повсеместное распространение антивирусных средств.\r\nTDS позволяет организовать объективный контроль сетевого трафика и вовремя выявлять ключевые угрозы на сетевом уровне, основываясь на передовой экспертизе и эксклюзивной разведывательной информации Group‑IB.\r\n\r\n<span style=\"font-weight: bold;\">Как работает TDS</span>\r\n<span style=\"font-weight: bold; font-style: italic;\">TDS Sensor:</span>\r\nВыявляет коммуникации зараженных устройств с командными центрами, общие сетевые аномалии и необычное поведение устройств\r\nИзвлекает потенциально опасные объекты, передаваемые по сети организации, для анализа в системе Polygon\r\n<span style=\"font-weight: bold; font-style: italic;\">TDS Polygon</span>\r\nПозволяет предотвратить заражения в результате:\r\nВредоносных почтовых рассылок\r\nАтак на браузер\r\nАтак с использованием ранее неизвестных вредоносных программ и инструментов.\r\nВердикт о степени опасности объекта выносится на основании классификатора, формируемого системой машинного анализа.\r\n<span style=\"font-weight: bold; font-style: italic;\">SOC Group-IB:</span>\r\nСобирает информацию о событиях ИБ для демонстрации в удобном web-интерфейсе;\r\nВ круглосуточном режиме анализирует и классифицирует инциденты руками опытных аналитиков;\r\nОтвечает на любые вопросы с помощью тикет-системы\r\n\r\n<span style=\"font-weight: bold;\">Преимущества TDS</span>\r\nTDS является частью единой системы раннего обнаружения угроз Group-IB. Данные анализируются сенсором с учетом информации, поступающей из системы Threat Intelligence, позволившей компании дважды войти в отчеты Gartner в категории “Threat Intelligence”. В результате в отличие от зарубежных аналогов TDS достигает наибольшей эффективности в детектировании локальных угроз и сигнатур, актуальных именно для российского рынка.\r\n\r\nЕсли вашу компанию будут атаковать, Group-IB предоставит услуги по реагированию и расследованию инцидента, и оформит цифровую доказательную базу в соответствии с требованиями законодательства.\r\n<ul><li>Оперативные уведомления о выявленных угрозах через почту и SMS</li><li>Удобный веб-интерфейс для работы с информацией об инцидентах</li><li>Интеграция с SIEM и системами хранения событий и логов </li><li>Автоматическая генерация отчетов по типам атак и временным периодам</li></ul>\r\n","shortDescription":"Система раннего предупреждения киберугроз\r\nВыявляйте зараженные узлы, предотвращая проникновения, утечки, целевые атаки и промышленный шпионаж","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":17,"sellingCount":8,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Group-IB TDS — обнаружение целевых атак","keywords":"Group-IB, вредоносных, устройств, информации, Polygon, программ, системы, веб-интерфейс","description":"Мгновенные уведомления об активности всех актуальных и ранее неизвестных семейств вредоносных программ Определение зараженных мобильных устройств","og:title":"Group-IB TDS — обнаружение целевых атак","og:description":"Мгновенные уведомления об активности всех актуальных и ранее неизвестных семейств вредоносных программ Определение зараженных мобильных устройств","og:image":"https://old.b4r.io/fileadmin/user_upload/TDS_-_obnaruzhenie_celevykh_atak.png"},"eventUrl":"","translationId":2657,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":489,"title":"Network Security Policy Management","alias":"network-security-policy-management","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/network-security-policy-management.png"},{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1183,"logoURL":"https://old.b4r.io/fileadmin/user_upload/TDS_-_obnaruzhenie_celevykh_atak.png","logo":true,"scheme":false,"title":"Group-IB TDS — Threat Detection System","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"group-ib-tds-threat-detection-system","companyTitle":"Group-IB","companyTypes":["supplier","vendor"],"companyId":4067,"companyAlias":"group-ib","description":"<ul><li>Intrusion detection with immediate notifications on all relevant malware families </li><li>Identification of infected devices in your organization’s wireless networks </li><li>Incident response with manual review of critical incidents by Group-IB experts</li><li>Top-tier usability and reporting features on detected threat </li><li>Automated daily updates of filter rules and signatures 24/7 support through IT ticketing system</li></ul>\r\n<span style=\"font-weight: bold;\">TDS – Advanced Threat Detection</span>\r\nGroup-IB TDS (Threat Detection System) is an intrusion detection and prevention tool to protect your network. It is a unique product by Group-IB, born out of our incident response expertise, skills in detecting malware and threat intelligence foundation.\r\nAs a component of Group-IB’s early warning system TDS benefits from other products, which contribute to its effectiveness. Group-IB’s SOC team is there for you 24/7 to prevent and remedy any network threats and breaches. Advanced persistent threat detection lowers cyber threats to your organization and ensure your network is protected from the most advanced cyber threats and threat actors.\r\n<span style=\"font-weight: bold;\">How TDS works</span>\r\n<span style=\"font-weight: bold;\">TDS Sensor:</span>\r\n<ul><li>Traffic inspection to prevent attacks and detect malware by identifying communications with Command and Control (C&C) servers, network anomalies and unusual user behavior.</li><li>Analyzes suspicious files in Group-IB’s sandbox, Polygon, in order to identify attacks at the earliest stage.</li></ul>\r\n<span style=\"font-weight: bold;\">TDS Polygon</span>\r\n\r\n<ul><li>Advanced threat detection in your network to shield it against:</li><li>Malicious e-mails</li><li>Attacks on browsers</li><li>Attacks using unknown malware or tools</li><li>Polygon, Group-IB’s sandboxing technology, embraces machine learning and advanced data analysis techniques to handle and rate cyber security incidents.</li></ul>\r\n<span style=\"font-weight: bold;\">Group-IB’ SOC:</span>\r\n\r\n<ul><li>Identifies all information security incidents in a web-interface to give your staff an overall view of all cyber security events online.</li><li>Suspicious incidents are analyzed by Group-IB’s SOC team and classified for your security team 24/7/365.</li><li>A convenient ticketing system ensures that all inquiries and responses are easily tracked and addressed.</li></ul>\r\n<br /><br />\r\n","shortDescription":"Intelligence driven Advanced threat detection\r\nNotifies you of security threats, malware and breaches inside your network to prevent intrusions, attacks, data leaks, and espionage","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":1,"sellingCount":5,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Group-IB TDS — Threat Detection System","keywords":"your, network, Group-IB’s, malware, incidents, Group-IB, detection, cyber","description":"Intrusion detection with immediate notifications on all relevant malware families Identification of infected devices in your organization’s wireless networks","og:title":"Group-IB TDS — Threat Detection System","og:description":"Intrusion detection with immediate notifications on all relevant malware families Identification of infected devices in your organization’s wireless networks","og:image":"https://old.b4r.io/fileadmin/user_upload/TDS_-_obnaruzhenie_celevykh_atak.png"},"eventUrl":"","translationId":1183,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":489,"title":"Network Security Policy Management","alias":"network-security-policy-management","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/network-security-policy-management.png"},{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1184,"logoURL":"https://old.b4r.io/fileadmin/user_upload/Group-IB_Secure_Bank.png","logo":true,"scheme":false,"title":"Group-IB Secure Bank","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"group-ib-secure-bank","companyTitle":"Group-IB","companyTypes":["supplier","vendor"],"companyId":4067,"companyAlias":"group-ib","description":"<ul><li>Quick and straightforward integration, that doesn't slow down your website </li><li>Fraud prevention at early stages of attempted execution </li><li>Secure banking solution with advanced fraud detection techniques</li><li>Top-tier functionality and incident reporting features </li><li>API for integration with your fraud monitoring systems </li><li>Analytics and consulting by Group-IB experts</li></ul>\r\nSecure Bank controls risks related to <span style=\"white-space:pre\">\t</span>the weakest link in banking cyber security — your clients.\r\n\r\nWhile your customers do not need to <span style=\"white-space:pre\">\t</span>install any software, Secure Bank offers financial fraud prevention and detection, guarding them against:\r\n<ul><li>Malicious injections in Internet payment systems</li><li>Phishing attacks, social engineering attacks</li><li>Unsanctioned remote connection and e‑banking transactions</li><li>Malicious code for online banking fraud that involves making automatic payments or using false account details</li><li>Employing zero-day vulnerabilities to <span style=\"white-space: pre;\">\t</span>run malicious software and intrusions</li></ul>\r\n<span style=\"font-weight: bold;\">How Secure Bank ensures online banking safety</span>\r\n<ul><li>Secure Bank mitigates online banking risks for your customers, running alongside existing IT systems. No need to <span style=\"white-space: pre;\">\t</span>have it installed on your customers’ devices.</li><li>The script does not slow down the operation of your website.</li><li>Secure Bank takes a proactive stand to ensure fraud prevention and detection, screening operations for any sign of malicious activities.</li><li>Collected information goes from your bank’s IT systems to Secure Bank.</li><li>No personal data are collected, transmitted or stored.</li><li>Group-IB experts are up-to-date with the latest cyber threats to the banking industry in order to properly break down and rate the collected data.</li></ul>\r\nSecure Bank sends immediate notifications of online fraud or suspicious e‑banking transactions, allowing you to offset their consequences. Secure Bank can be integrated with your organization’s anti-fraud software and existing IT infrastructure to ensure an even faster response to online banking frauds.","shortDescription":"Innovative solution for secure online payments\r\nFinancial fraud prevention and detection to better protect your customers\r\n","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":16,"sellingCount":20,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Group-IB Secure Bank","keywords":"Secure, your, Bank, banking, fraud, online, with, software","description":"Quick and straightforward integration, that doesn't slow down your website Fraud prevention at early stages of attempted execution Secure banking","og:title":"Group-IB Secure Bank","og:description":"Quick and straightforward integration, that doesn't slow down your website Fraud prevention at early stages of attempted execution Secure banking","og:image":"https://old.b4r.io/fileadmin/user_upload/Group-IB_Secure_Bank.png"},"eventUrl":"","translationId":1185,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":24,"title":"DLP - Data Leak Prevention","alias":"dlp-data-leak-prevention","description":"Предотвращение утечек (англ. Data Leak Prevention, DLP) — технологии предотвращения утечек конфиденциальной информации из информационной системы вовне, а также технические устройства (программные или программно-аппаратные) для такого предотвращения утечек.\r\n\r\nDLP-системы строятся на анализе потоков данных, пересекающих периметр защищаемой информационной системы. При детектировании в этом потоке конфиденциальной информации срабатывает активная компонента системы, и передача сообщения (пакета, потока, сессии) блокируется.\r\n\r\nИспользуются также следующие термины, обозначающие приблизительно то же самое:\r\n\r\nData Loss Prevention (DLP);\r\nData Leak Prevention (DLP);\r\nData Leakage Protection (DLP);\r\nInformation Protection and Control (IPC);\r\nInformation Leak Prevention (ILP);\r\nInformation Leak Protection (ILP);\r\nInformation Leak Detection & Prevention (ILDP);\r\nContent Monitoring and Filtering (CMF);\r\nExtrusion Prevention System (EPS).","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/DLP.png"},{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"},{"id":52,"title":"SaaS - software as a service","alias":"saas-software-as-a-service","description":"SaaS (англ. software as a service — программное обеспечение как услуга; также англ. software on demand — программное обеспечение по требованию) — одна из форм облачных вычислений, модель обслуживания, при которой подписчикам предоставляется готовое прикладное программное обеспечение, полностью обслуживаемое провайдером. Поставщик в этой модели самостоятельно управляет приложением, предоставляя заказчикам доступ к функциям с клиентских устройств, как правило через мобильное приложение или веб-браузер.\r\n\r\nОсновное преимущество модели SaaS для потребителя услуги состоит в отсутствии затрат, связанных с установкой, обновлением и поддержкой работоспособности оборудования и работающего на нём программного обеспечения.\r\n\r\nВ модели SaaS:\r\n\r\nприложение приспособлено для удаленного использования;\r\nодним приложением пользуется несколько клиентов (приложение коммунально);\r\nоплата взимается либо в виде ежемесячной абонентской платы, либо на основе объёма операций;\r\nтехническая поддержка приложения включена в оплату;\r\nмодернизация и обновление приложения происходит оперативно и прозрачно для клиентов.\r\nКак и во всех формах облачных вычислений, заказчики платят не за владение программным обеспечением как таковым, а за его аренду (то есть за его использование через мобильное приложение или веб-интерфейс). Таким образом, в отличие от классической схемы лицензирования программного обеспечения, заказчик несет сравнительно небольшие периодические затраты, и ему не требуется инвестировать значительные средства в приобретение прикладной программы и необходимых программно-платформенных и аппаратных средств для его развёртывания, а затем поддерживать его работоспособность. Схема периодической оплаты предполагает, что если необходимость в программном обеспечении временно отсутствует, то заказчик может приостановить его использование и заморозить выплаты разработчику.\r\n\r\nС точки зрения разработчика некоторого проприетарного программного обеспечения модель SaaS позволяет эффективно бороться с нелицензионным использованием программного обеспечения, поскольку программное обеспечение как таковое не попадает к конечным заказчикам. Кроме того, концепция SaaS часто позволяет уменьшить затраты на развёртывание и внедрение систем технической и консультационной поддержки продукта, хотя и не исключает их полностью.\r\n\r\nИсточник: https://ru.wikipedia.org/wiki/SaaS","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/cloud_computing2__1_.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1192,"logoURL":"https://old.b4r.io/fileadmin/user_upload/SecurityMatters.png","logo":true,"scheme":false,"title":"SecurityMatters SilentDefense","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"securitymatters-silentdefense","companyTitle":"SecurityMatters","companyTypes":["supplier","vendor"],"companyId":4069,"companyAlias":"securitymatters","description":"BENEFITS\r\nSilentDefense empowers industrial operators with unrivaled visibility, threat detection capability and control of their network.\r\nVISIBILITY\r\nSee what your network devices are doingAssess risks, threats and vulnerabilitiesUnderstand the current resilience state of your network\r\nDETECTION\r\nCatch known and unknown threats at their earliest stagesPinpoint weak spots and current inefficienciesGather all evidence required for incident response\r\nCONTROL\r\n\r\n<ul><li>Know what's going on at all times</li><li>Anticipate problems and threats</li><li>Prioritize incident response and mitigation activity</li></ul>\r\nFEATURES\r\n\r\n<ul><li>Asset inventory and network map</li><li>Obtain full knowledge and awareness of your network through SilentDefense’s automatic asset inventory and device fingerprinting features</li><li>Browse through the interactive network map to understand device behavior, threats and vulnerabilities</li><li>Filter and export the information for reporting and backup</li></ul>\r\nASSET INVENTORY AND NETWORK MAP\r\nVISUAL NETWORK ANALYTICS\r\nNETWORK AND PROCESS ANOMALY DETECTION\r\nINDUSTRY-SPECIFIC THREAT LIBRARIES\r\nDEPLOYMENT\r\n\r\n<ul><li>Deployed in a matter of hours, delivers immediate results</li><li>Connects to the SPAN/mirroring port of network switches or by using network tap technology</li><li>Fully passive, monitors real-time network traffic without any interference or impact on the monitored environment</li></ul>\r\nINTEGRATION\r\n\r\n<ul><li>Natively integrates with all major SIEM solutions, authentication servers and industrial firewalls</li><li>Features a comprehensive API for data extraction and updates</li><li>Its scalable architecture allows to simultaneously monitor multiple network segments and locations from a single screen</li></ul>\r\nAVAILABLE CONFIGURATIONS\r\n\r\n<ul><li>Available both as a software or appliance-based solution</li><li>Runs on commercial off-the-shelf hardware and hypervisors</li><li>Form factors and sizing for appliance-based solutions vary from standard server units to ruggedized hardware depending on the monitored environment and throughput</li></ul>\r\nPROTOCOL SUPPORT\r\n<ul><li>15+ open OT protocols, including all smart grid and industrial automation protocols</li><li>Proprietary protocols of all major ICS vendors</li><li>20+ IT protocols common to industrial environments</li><li>Support for additional protocols is added on a continuous basis or on customer request.</li></ul>","shortDescription":"With installations worldwide, SilentDefense is the most advanced and mature OT network monitoring and intelligence platform. SilentDefense passively analyzes industrial network communications, provides rich information about network assets and alerts in real-time for any threat to operational continuity.\r\n\r\nFeaturing a user-friendly interface and out of the box detection engines, SilentDefense instantly delivers actionable results.","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":0,"sellingCount":13,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"SecurityMatters SilentDefense","keywords":"network, protocols, industrial, your, NETWORK, threats, DETECTION, response","description":"BENEFITS\rSilentDefense empowers industrial operators with unrivaled visibility, threat detection capability and control of their network.\rVISIBILITY\rSee what","og:title":"SecurityMatters SilentDefense","og:description":"BENEFITS\rSilentDefense empowers industrial operators with unrivaled visibility, threat detection capability and control of their network.\rVISIBILITY\rSee what","og:image":"https://old.b4r.io/fileadmin/user_upload/SecurityMatters.png"},"eventUrl":"","translationId":1193,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"},{"id":335,"title":"Secure Content and Threat Management","alias":"secure-content-and-threat-management","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/content-security-management.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":1194,"logoURL":"https://old.b4r.io/fileadmin/user_upload/Carbon_Black.png","logo":true,"scheme":false,"title":"Carbon Black (Cb) Defense","vendorVerified":0,"rating":"1.00","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":0,"alias":"carbon-black-cb-defense","companyTitle":"Carbon Black","companyTypes":["supplier","vendor"],"companyId":4070,"companyAlias":"carbon-black","description":"Next-generation antivirus + EDR in one cloud-delivered platform that stops commodity malware, advanced malware, non-malware attacks and ransomware.\r\nStop the Most Attacks\r\n\r\n<ul><li>53% of breaches do not use malware. Streaming prevention goes beyond machine learning AV to stop all types of attacks before they compromise your system.</li><li>Stop malware, ransomware, and non-malware attacks</li><li>Prevent attacks automatically, online and offline</li><li>Block emerging, never-before-seen attacks that other solutions miss</li></ul>\r\nSee Every Threat\r\n\r\n<ul><li>97% of organizations will be targeted by a non-malware attack. Our market-leading detection and response capabilities reveal threat activity in real time, so you can respond immediately to any type of attack.</li><li>Continuous and centralized recording provides complete visibility into the attack</li><li>Quickly visualize the attack chain to see exactly what attackers are trying to do</li><li>Automated threat hunting, powered by the cloud, keeps you one step ahead of every attack</li></ul>\r\nCompromise Nothing\r\n\r\n<ul><li>1 in 3 organizations will be targeted by a non-malware attack in the next 90 days. Quickly take back control with a single agent, a simple cloud console, and virtually no impact to end users.</li><li>Deploy in 15 minutes or less, with less than 1% CPU and disk space per endpoint</li><li>Lightweight agent won’t impact performance, keeping users happy and productive</li><li>Effective security that balances total visibility, automated prevention, and minimal user impact</li></ul>\r\n</p>\r\n","shortDescription":"Carbon Black (Cb) Defense - Breakthrough Prevention That Stops the Most Attacks","type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":15,"sellingCount":19,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"Carbon Black (Cb) Defense","keywords":"attack, attacks, non-malware, malware, impact, that, users, will","description":"Next-generation antivirus + EDR in one cloud-delivered platform that stops commodity malware, advanced malware, non-malware attacks and ransomware.\rStop the","og:title":"Carbon Black (Cb) Defense","og:description":"Next-generation antivirus + EDR in one cloud-delivered platform that stops commodity malware, advanced malware, non-malware attacks and ransomware.\rStop the","og:image":"https://old.b4r.io/fileadmin/user_upload/Carbon_Black.png"},"eventUrl":"","translationId":1195,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[],"testingArea":"","categories":[{"id":204,"title":"Managed Detection and Response","alias":"managed-detection-and-response","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/threat-detection-and-response.png"},{"id":335,"title":"Secure Content and Threat Management","alias":"secure-content-and-threat-management","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/content-security-management.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]},{"id":2187,"logoURL":"https://old.b4r.io/fileadmin/content/449942.483xp_01.jpg","logo":true,"scheme":false,"title":"78887(1)","vendorVerified":0,"rating":"1.40","implementationsCount":0,"suppliersCount":0,"supplierPartnersCount":1,"alias":"788871","companyTitle":"IT Service +","companyTypes":["supplier","vendor"],"companyId":3328,"companyAlias":"it-servis","description":null,"shortDescription":null,"type":null,"isRoiCalculatorAvaliable":false,"isConfiguratorAvaliable":false,"bonus":100,"usingCount":13,"sellingCount":1,"discontinued":0,"rebateForPoc":0,"rebate":0,"seo":{"title":"78887(1)","keywords":"","description":"","og:title":"78887(1)","og:description":"","og:image":"https://old.b4r.io/fileadmin/content/449942.483xp_01.jpg"},"eventUrl":"","translationId":2952,"dealDetails":null,"roi":null,"price":null,"bonusForReference":null,"templateData":[{"id":88,"title":"78887"}],"testingArea":"","categories":[{"id":820,"title":"Marketing Automation","alias":"marketing-automation","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/marketing-automation.png"},{"id":199,"title":"Deception Techniques and Honeypots","alias":"deception-techniques-and-honeypots","description":"","materialsDescription":"","iconURL":"https://old.b4r.io/fileadmin/user_upload/simulation-and-trap-technologies.png"}],"characteristics":[],"concurentProducts":[],"jobRoles":[],"organizationalFeatures":[],"complementaryCategories":[],"solutions":[],"materials":[],"useCases":[],"best_practices":[],"values":[],"implementations":[]}],"jobRoles":[{"id":60,"title":"Chief Information Officer"},{"id":64,"title":"Chief IT Security Officer"}],"organizationalFeatures":["IT Security Department in company","GDPR Compliance","Personal data operation"],"complementaryCategories":[{"id":544,"title":"DLP - Appliance"},{"id":546,"title":"WAF-web application firewall appliance"},{"id":550,"title":"Web filtering - Appliance"},{"id":560,"title":"IPC - Information Protection and Control - Appliance"},{"id":784,"title":"NGFW - next-generation firewall"},{"id":78,"title":"PAM - privileged access management"},{"id":45,"title":"SIEM - Security Information and Event Management"},{"id":77,"title":"SOC - Situation Centre"},{"id":465,"title":"UEBA - User and Entity Behavior Analytics"}],"solutions":["Unaurthorized access to corporate IT systems and data","Risk of data loss or damage","Risk of attacks by hackers","Risk or Leaks of confidential information"],"materials":[{"id":19,"title":"","description":"TrapX Securty’s Deception Grid listed in Gartner report on Deception techniques and technologies","uri":"http://trapx.com/trapx-securitys-deceptiongrid-listed-in-gartner-report-on-deception-techniques-and-technologies/"},{"id":20,"title":"","description":"Article «A Hole as a Security Control of a Deception in Action”","uri":"http://brilliancesecuritymagazine.com/op-ed/a-hole-as-a-security-control-or-deception-in-action/"},{"id":38,"title":"","description":"SC Awards announcement of TrapX leader on 2018","uri":"http://www.scawardseurope.com/results-2018/"},{"id":39,"title":"","description":"Product Brief TrapX DeceptionGrid","uri":"https://share.trapx.com/dl/GEc6E3mhIW"},{"id":40,"title":"","description":"Case Study TrapX Manufacturing SCADA","uri":"https://share.trapx.com/dl/s1mqPwZmMA"},{"id":41,"title":"","description":"TrapX Zombie Zero Attack Analysis","uri":"https://share.trapx.com/dl/pmpkawRXnI"},{"id":42,"title":"","description":"TrapX Corporate Deck With Speaking Notes","uri":"https://share.trapx.com/dl/ngOBIAYXmV"},{"id":50,"title":"","description":"A Hole as a security control or Deception in action","uri":"https://www.peerlyst.com/posts/a-hole-as-a-security-control-or-deception-in-action-alex-lozikoff?trk=user_notification"}],"useCases":[{"id":13,"title":"The Use of Deception Techniques : Honeypots and Decoys","description":"Honeypots and similar sorts of decoys represent only the most rudimentary uses of deception in protection of information systems. But because of their relative popularity and cultural interest, they have gained substantial attention in the research and commercial communities. In this paper we will introduce honeypots and similar sorts of decoys, discuss their historical use in defense of information systems, and describe some of their uses today. We will then go into a bit of the theory behind deceptions, discuss their limitations, and put them in the greater context of information protection. \r\nSource https://pdfs.semanticscholar.org/a41b/7ab1c9bdad7cca82e739f9e08413eede7881.pdf"},{"id":14,"title":"Designing Adaptive Deception Strategies","description":"Deception-based defense is the process by which actions are intentionally employed to cause misrepresentation and induce erroneous inferences on attackers. Deception can be employed in different levels of computation, from network to application-level, which demands careful planning and coordination between multiple strategies and tactics. Despite of advances on using deception in computer defenses, ad-hoc approaches are still used for their design. As a result, deception is realized essentially as single tools or as entire solutions repackaged as honeypot machines. In this paper, we propose a model to specify coordinated deception tactics based on adaptive architectures.\r\nOur contributions rely on a deception-based defense life-cycle approach integrated in a software design process, including a model to specify coordinated deception strategies. \r\nSource http://nova-lincs.di.fct.unl.pt/system/publication_files/files/000/000/645/original/DesigningAdaptiveDeceptionStrategies.pdf?1469118788"},{"id":18,"title":"Gartner's Hype Cycle for Threat – Facing Technologies 2018","description":"Gartner's Hype Cycle for Threat – Facing Technologies 2018\r\nhttps://share.trapx.com/dl/UAdJjhfvwD","imageURL":"https://old.b4r.io/fileadmin/user_upload/TrapX_DeceptionGrid_platform.png"}],"best_practices":[],"values":["Ensure Security and Business Continuity","Reduce Costs"],"implementations":[{"id":518,"title":"TrapX DeceptionGrid Platform for financial industry","url":"https://old.b4r.io/vnedrenija/vnedrenie/trapx-deceptiongrid-platform-for-financial-industry/"},{"id":519,"title":"TrapX DeceptionGrid Platform for National Government","url":"https://old.b4r.io/vnedrenija/vnedrenie/trapx-deceptiongrid-platform-for-national-government/"},{"id":520,"title":"TrapX DeceptionGrid Platform for Software Vendor","url":"https://old.b4r.io/vnedrenija/vnedrenie/trapx-deceptiongrid-platform-for-software-vendor/"},{"id":521,"title":"TrapX DeceptionGrid Platform for Law Enforcement","url":"https://old.b4r.io/vnedrenija/vnedrenie/trapx-deceptiongrid-platform-for-law-enforcement/"},{"id":535,"title":"TrapX Deception Grid for manufacturer of steel products","url":"https://old.b4r.io/vnedrenija/vnedrenie/trapx-deception-grid-for-manufacturer-of-steel-products/"},{"id":428,"title":"TrapX DeceptionGrid Platform для страховой отрасли","url":"https://old.b4r.io/vnedrenija/vnedrenie/trapx-deceptiongrid-platform-dlja-strakhovoi-otrasli/"},{"id":429,"title":"TrapX DeceptionGrid Platform для правительственной организации","url":"https://old.b4r.io/vnedrenija/vnedrenie/trapx-deceptiongrid-platform-dlja-pravitelstvennoi-organizacii/"},{"id":430,"title":"TrapX DeceptionGrid Platform для производителя ПО","url":"https://old.b4r.io/vnedrenija/vnedrenie/trapx-deceptiongrid-platform-dlja-proizvoditelja-po/"},{"id":431,"title":"TrapX DeceptionGrid Platform для правоохранительных органов","url":"https://old.b4r.io/vnedrenija/vnedrenie/trapx-deceptiongrid-platform-dlja-pravookhranitelnykh-organov/"}],"presenterCodeLng":"","productImplementations":[{"id":518,"title":"TrapX DeceptionGrid Platform for financial industry","description":"<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold; \">Attackers Target Authentication Data</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold; \">Project Background - a Technology Evaluation</span>\r\nOur financial case study focuses on a global insurance institution. Prior toour involvement, there were absolutely no indicators of malware infection or persistent threats visible to the customer. The customer had a robustindustry suite of cyber defense products which included a firewall, antivirussuites, intrusion detection software, endpoint security and othersoftware.\r\nWithin a short period of time, the TrapX DeceptionGrid generatedALERTS and identified two malicious separate processes involved inunauthorized lateral movement within the insurance company network.\r\nUpon analysis it was determined that both of these malicious processeswere communicating with multiple connection points in Russia.\r\nThese connection points in Russia and the other injected softwarecaptured worked together as an advanced password stealer. The attackerspenetrated the network and had captured password information. This targeted theft of authentication credentials represented a serious threat tothe integrity of the company's overall operations. At this time it has notbeen determined to what extent passwords were captured prior todetection.\r\nOther malware of lower risk identified by DeceptionGrid included Trj/Downloader.LEK Trojan, TROJ_QHOST.DB Trojan, and theW32.Greypack worm. All of these were not detected by the customersexisting cyber suite. Analysis suggests at least one of them might havebeen detected but the alerts were missed against the volume of overallalert traffic.\r\n\r\n<span style=\"font-weight: bold;\">Critical and Confidential Authentication Credentials at Risk</span>\r\nTrapX determined that critical and confidential password data was beingexfiltrated to Russia. The scope of data compromise is still underinvestigation at this time and the global insurance firm has taken preemptivemeasures to replace credentials on suspected software systems. \r\n","alias":"trapx-deceptiongrid-platform-for-financial-industry","roi":0,"seo":{"title":"TrapX DeceptionGrid Platform for financial industry","keywords":"were, insurance, time, determined, Russia, TrapX, password, DeceptionGrid","description":"Attackers Target Authentication Data\rProject Background - a Technology Evaluation\rOur financial case study focuses on a global insurance institution. Prior","og:title":"TrapX DeceptionGrid Platform for financial industry","og:description":"Attackers Target Authentication Data\rProject Background - a Technology Evaluation\rOur financial case study focuses on a global insurance institution. Prior"},"deal_info":"","user":{"id":4195,"title":"Hidden user","logoURL":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg","alias":"skrytyi-polzovatel","address":"","roles":[],"description":"User Information is confidential ","companyTypes":[],"products":{},"vendoredProductsCount":0,"suppliedProductsCount":0,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":13,"supplierImplementationsCount":0,"vendorImplementationsCount":0,"vendorPartnersCount":0,"supplierPartnersCount":0,"b4r":0,"categories":{},"companyUrl":"","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"Hidden user","keywords":"Hidden, user, User, Information, confidential","description":"User Information is confidential ","og:title":"Hidden user","og:description":"User Information is confidential ","og:image":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg"},"eventUrl":""},"supplier":{},"vendors":[{"id":3890,"title":"TrapX","logoURL":"https://old.b4r.io/uploads/roi/company/TrapX.png","alias":"trapx","address":"","roles":[],"description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be attackers with turn-key decoys (traps) that “imitate” your true assets. Hundreds or thousands of traps can be deployed with little effort, creating a virtual mine field for cyberattacks, alerting you to any malicious activity with actionable intelligence immediately.","companyTypes":[],"products":{},"vendoredProductsCount":1,"suppliedProductsCount":1,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":0,"supplierImplementationsCount":0,"vendorImplementationsCount":9,"vendorPartnersCount":0,"supplierPartnersCount":1,"b4r":0,"categories":{},"companyUrl":"https://trapx.com/","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"TrapX","keywords":"with, TrapX, field, that, traps, little, creating, deployed","description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:title":"TrapX","og:description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:image":"https://old.b4r.io/uploads/roi/company/TrapX.png"},"eventUrl":""}],"products":[],"countries":[],"startDate":"0000-00-00","endDate":"0000-00-00","dealDate":"0000-00-00","price":0,"status":"finished","isImplementation":true,"isAgreement":false,"confirmed":1,"implementationDetails":{},"categories":[],"additionalInfo":{"budgetNotExceeded":"","functionallyTaskAssignment":"","projectWasPut":"","price":0,"source":{"url":"https://trapx.com/wp-content/uploads/2017/08/Case_Study_TrapX_Finance_Insurance.pdf","title":"-"}},"comments":[],"referencesCount":0},{"id":519,"title":"TrapX DeceptionGrid Platform for National Government","description":"<span style=\"font-size: 12px; font-family: Verdana, sans-serif; color: rgb(0, 0, 0); font-weight: bold; \">Multiple Attackers Penetrate National Agency</span>\r\n<span style=\"font-size: 12px; font-family: Verdana, sans-serif; color: rgb(0, 0, 0); font-weight: bold; \">Project Background - a Technology Evaluation</span>\r\n<span style=\"font-size: 12px; font-family: Verdana, sans-serif; color: rgb(0, 0, 0); \">Our case study focuses on a large national government agency. This agency has hundreds of employees and has multiple facilities disbursed over a large geographic area. This agency wanted to learn more about deception technology as part of their regular evaluation of cyber security vendors.</span>\r\n<span style=\"font-size: 12px; font-family: Verdana, sans-serif; color: rgb(0, 0, 0); font-weight: bold; \">Massive Penetration by Attackers Detected in Multiple Areas</span>\r\n<span style=\"font-size: 12px; font-family: Verdana, sans-serif; color: rgb(0, 0, 0); \">DeceptionGrid was placed into operation. Starting almost immediately and over the course of several weeks the government security operations command (SOC) team received multiple High Priority Alerts. This was one of the most massive attacks we have ever discovered. We identified multiple attackers in several areas to include over five (5+) attackers using malware servers, over five (5+) attackers linking back data flow to botnet c&c servers and over fifty (50+) remote attackers using TOR anonymous proxy to hide source IP addresses. In some cases the malware was automatically trapped and injected into the sandbox for continued analysis. Multiple attackers had established command and control and had bypassed the complete array of existing intrusion detection, firewall, endpoint and perimeter cyber software defense.</span>\r\n<span style=\"font-size: 12px; font-family: Verdana, sans-serif; color: rgb(0, 0, 0); \">Malware found included Cryptowall, P2P Malware, Trojan-Banker, TrojanRansome, Mobogenie.B and WS.Reputation.1. </span>\r\n<span style=\"font-size: 12px; font-family: Verdana, sans-serif; color: rgb(0, 0, 0); font-weight: bold; \">Exfiltration of Data Discovered - Broadscale Remediation Required</span>\r\n<span style=\"font-size: 12px; font-family: Verdana, sans-serif; color: rgb(0, 0, 0); \">It is clear that multiple attackers have successfully exfiltrated data from this government agency. The attack vectors varied substantially and compromised workstations and servers across multiple departments. Required remediation was done on a broad scale and included reprovisioning of both workstations and servers. The government involved has been forced to either re-provision on a large scale, or, to perform more time intensive memory dump analysis to better understand the extent of the penetration by this varied mix of attackers. Source attacker IP adresses as known are confidential at this time and part of an ongoing criminal investigation.</span>","alias":"trapx-deceptiongrid-platform-for-national-government","roi":0,"seo":{"title":"TrapX DeceptionGrid Platform for National Government","keywords":"attackers, multiple, over, government, servers, agency, This, large","description":"Multiple Attackers Penetrate National Agency\rProject Background - a Technology Evaluation\rOur case study focuses on a large national government agency. This","og:title":"TrapX DeceptionGrid Platform for National Government","og:description":"Multiple Attackers Penetrate National Agency\rProject Background - a Technology Evaluation\rOur case study focuses on a large national government agency. This"},"deal_info":"","user":{"id":4195,"title":"Hidden user","logoURL":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg","alias":"skrytyi-polzovatel","address":"","roles":[],"description":"User Information is confidential ","companyTypes":[],"products":{},"vendoredProductsCount":0,"suppliedProductsCount":0,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":13,"supplierImplementationsCount":0,"vendorImplementationsCount":0,"vendorPartnersCount":0,"supplierPartnersCount":0,"b4r":0,"categories":{},"companyUrl":"","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"Hidden user","keywords":"Hidden, user, User, Information, confidential","description":"User Information is confidential ","og:title":"Hidden user","og:description":"User Information is confidential ","og:image":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg"},"eventUrl":""},"supplier":{},"vendors":[{"id":3890,"title":"TrapX","logoURL":"https://old.b4r.io/uploads/roi/company/TrapX.png","alias":"trapx","address":"","roles":[],"description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be attackers with turn-key decoys (traps) that “imitate” your true assets. Hundreds or thousands of traps can be deployed with little effort, creating a virtual mine field for cyberattacks, alerting you to any malicious activity with actionable intelligence immediately.","companyTypes":[],"products":{},"vendoredProductsCount":1,"suppliedProductsCount":1,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":0,"supplierImplementationsCount":0,"vendorImplementationsCount":9,"vendorPartnersCount":0,"supplierPartnersCount":1,"b4r":0,"categories":{},"companyUrl":"https://trapx.com/","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"TrapX","keywords":"with, TrapX, field, that, traps, little, creating, deployed","description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:title":"TrapX","og:description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:image":"https://old.b4r.io/uploads/roi/company/TrapX.png"},"eventUrl":""}],"products":[],"countries":[],"startDate":"0000-00-00","endDate":"0000-00-00","dealDate":"0000-00-00","price":0,"status":"finished","isImplementation":true,"isAgreement":false,"confirmed":1,"implementationDetails":{},"categories":[],"additionalInfo":{"budgetNotExceeded":"","functionallyTaskAssignment":"","projectWasPut":"","price":0,"source":{"url":"https://trapx.com/wp-content/uploads/2017/08/Case_Study_TrapX_NationalGovernment.pdf","title":"-"}},"comments":[],"referencesCount":0},{"id":520,"title":"TrapX DeceptionGrid Platform for Software Vendor","description":"<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Attackers Target Software Company</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Project Background - a Technology Evaluation</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">Our case study focuses on a leading software vendor that provides software through cloud services to their customers in healthcare. This customer's information technology team invested very substantially in defense-in-depth cyber defense software. Their security operations center regularly detected malware and was able to routinely remediate all of these known incidents.</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">The customer had a strong industry suite of cyber defense products which included firewalls, anti virus suites, intrusion detection software, endpoint security and other software. Our initial installation included over ten (10) vLANS.</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">DeceptionGrid was placed into operation. Almost immediately the customer information technology staff received multiple High Priority Alerts. These included identified suspicious activity and led to the discovery of several network misconfigurations. Several internal internet addresses were exposed to the internet and open to a variety of high risk protocols. Inbound connections from attackers were operational via SSH, Telnet and Remote Desktop. A TOR (anonymous proxy) obfuscated web crawler had mapped all of the exposed hosts.</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">Some of the malware was automatically trapped and injected into the sandbox by DeceptionGrid for continued analysis. The attackers had multiple command and control points and had bypassed the complete array of existing security.</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Multiple Concurrent Attackers Detected and Remediated</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">A full investigation continued as DeceptionGrid continued to monitor and capture malware movement. Multiple command and control point in six (6) workstations were linked to attackers in Beijing China, Moldava, and the multiple locations within Ukraine. Dozens of workstations had to be reprovisioned to eliminate access. Manual memory dump and analysis was required across many information technology assets to identify the full scope of the extensive and previously undetected attacker activity. Scope of Data Theft Remains Indeterminate Multiple attackers accessed this technology company's networks workstations and servers. The scope of intellectual property data exfiltration and theft is unknown but under continued investigation. </span>","alias":"trapx-deceptiongrid-platform-for-software-vendor","roi":0,"seo":{"title":"TrapX DeceptionGrid Platform for Software Vendor","keywords":"software, attackers, DeceptionGrid, continued, technology, customer, security, information","description":"Attackers Target Software Company\rProject Background - a Technology Evaluation\rOur case study focuses on a leading software vendor that provides software","og:title":"TrapX DeceptionGrid Platform for Software Vendor","og:description":"Attackers Target Software Company\rProject Background - a Technology Evaluation\rOur case study focuses on a leading software vendor that provides software"},"deal_info":"","user":{"id":4195,"title":"Hidden user","logoURL":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg","alias":"skrytyi-polzovatel","address":"","roles":[],"description":"User Information is confidential ","companyTypes":[],"products":{},"vendoredProductsCount":0,"suppliedProductsCount":0,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":13,"supplierImplementationsCount":0,"vendorImplementationsCount":0,"vendorPartnersCount":0,"supplierPartnersCount":0,"b4r":0,"categories":{},"companyUrl":"","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"Hidden user","keywords":"Hidden, user, User, Information, confidential","description":"User Information is confidential ","og:title":"Hidden user","og:description":"User Information is confidential ","og:image":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg"},"eventUrl":""},"supplier":{},"vendors":[{"id":3890,"title":"TrapX","logoURL":"https://old.b4r.io/uploads/roi/company/TrapX.png","alias":"trapx","address":"","roles":[],"description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be attackers with turn-key decoys (traps) that “imitate” your true assets. Hundreds or thousands of traps can be deployed with little effort, creating a virtual mine field for cyberattacks, alerting you to any malicious activity with actionable intelligence immediately.","companyTypes":[],"products":{},"vendoredProductsCount":1,"suppliedProductsCount":1,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":0,"supplierImplementationsCount":0,"vendorImplementationsCount":9,"vendorPartnersCount":0,"supplierPartnersCount":1,"b4r":0,"categories":{},"companyUrl":"https://trapx.com/","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"TrapX","keywords":"with, TrapX, field, that, traps, little, creating, deployed","description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:title":"TrapX","og:description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:image":"https://old.b4r.io/uploads/roi/company/TrapX.png"},"eventUrl":""}],"products":[],"countries":[],"startDate":"0000-00-00","endDate":"0000-00-00","dealDate":"0000-00-00","price":0,"status":"finished","isImplementation":true,"isAgreement":false,"confirmed":1,"implementationDetails":{},"categories":[],"additionalInfo":{"budgetNotExceeded":"","functionallyTaskAssignment":"","projectWasPut":"","price":0,"source":{"url":"https://trapx.com/wp-content/uploads/2017/08/Case_Study_TrapX_Software.pdf","title":"-"}},"comments":[],"referencesCount":0},{"id":521,"title":"TrapX DeceptionGrid Platform for Law Enforcement","description":"<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Attackers Target Law Enforcement Data</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Project Background - a Technology Evaluation</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">Our case study focuses on a prominent law enforcement agency. This agency has responsibility for many activities which may include highly sensitive investigations into organized crime and terrorist activity. This agency is always interested in improving their cyber defenses and has a large budget dedicated to technology acquisition. Priorities for this agency include the protection of the confidentiality of their ongoing operations, internal processes and their personnel.</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">This agency conducted a survey of technology vendors and wanted to learn more about deception technology. They were familiar with legacy honeypot technology and found it to be far to expensive to implement both in terms of resources and financial cost. This agency was very cautious and had partitioned several networks within the enterprise. Some were to be used for highly confidential (classified) data only - others for data of lesser confidentiality.</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Advanced Persistent Threat Leverages Lapse in Protocol</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">DeceptionGrid was placed into operation. Within one week the customer security operations (SOC) team received a High Priority Alert indicating the lateral movement of an advanced threat. The malware was automatically trapped and injected into the sandbox for continued analysis. The attackers had established sophisticated command and control and had bypassed the complete array of existing intrusion detection, firewall, endpoint and perimeter cyber software defense.</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">A full investigation continued as DeceptionGrid continued to monitor and capture malware movement. The agency's security operations team determined that there was an internal breach in their protocol. A connection, in breach of the agency's operting procedures, was found between their secure network and one of the less secure networks (lower security rating). This breach in protocol enabled the attacker's access .</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Exfiltration of Data Discovered and Halted</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">The attacker was found to have moved without detection throughout the law enforcement agency network and servers. There were over ten explicit lateral movements made prior to detection by DeceptionGrid. The attacker found and exfiltrated data including the confidential records of agency personnel, their I.D information, their photographs and other highly confidential data. DeceptionGrid enabled the agency to disrupt the attack and then confidently restore normal security protocols.</span>","alias":"trapx-deceptiongrid-platform-for-law-enforcement","roi":0,"seo":{"title":"TrapX DeceptionGrid Platform for Law Enforcement","keywords":"agency, their, This, DeceptionGrid, security, data, found, technology","description":"Attackers Target Law Enforcement Data\rProject Background - a Technology Evaluation\rOur case study focuses on a prominent law enforcement agency. This agency","og:title":"TrapX DeceptionGrid Platform for Law Enforcement","og:description":"Attackers Target Law Enforcement Data\rProject Background - a Technology Evaluation\rOur case study focuses on a prominent law enforcement agency. This agency"},"deal_info":"","user":{"id":4195,"title":"Hidden user","logoURL":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg","alias":"skrytyi-polzovatel","address":"","roles":[],"description":"User Information is confidential ","companyTypes":[],"products":{},"vendoredProductsCount":0,"suppliedProductsCount":0,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":13,"supplierImplementationsCount":0,"vendorImplementationsCount":0,"vendorPartnersCount":0,"supplierPartnersCount":0,"b4r":0,"categories":{},"companyUrl":"","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"Hidden user","keywords":"Hidden, user, User, Information, confidential","description":"User Information is confidential ","og:title":"Hidden user","og:description":"User Information is confidential ","og:image":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg"},"eventUrl":""},"supplier":{},"vendors":[{"id":3890,"title":"TrapX","logoURL":"https://old.b4r.io/uploads/roi/company/TrapX.png","alias":"trapx","address":"","roles":[],"description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be attackers with turn-key decoys (traps) that “imitate” your true assets. Hundreds or thousands of traps can be deployed with little effort, creating a virtual mine field for cyberattacks, alerting you to any malicious activity with actionable intelligence immediately.","companyTypes":[],"products":{},"vendoredProductsCount":1,"suppliedProductsCount":1,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":0,"supplierImplementationsCount":0,"vendorImplementationsCount":9,"vendorPartnersCount":0,"supplierPartnersCount":1,"b4r":0,"categories":{},"companyUrl":"https://trapx.com/","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"TrapX","keywords":"with, TrapX, field, that, traps, little, creating, deployed","description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:title":"TrapX","og:description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:image":"https://old.b4r.io/uploads/roi/company/TrapX.png"},"eventUrl":""}],"products":[],"countries":[],"startDate":"0000-00-00","endDate":"0000-00-00","dealDate":"0000-00-00","price":0,"status":"finished","isImplementation":true,"isAgreement":false,"confirmed":1,"implementationDetails":{},"categories":[],"additionalInfo":{"budgetNotExceeded":"","functionallyTaskAssignment":"","projectWasPut":"","price":0,"source":{"url":"https://trapx.com/wp-content/uploads/2017/08/Case_Study_TrapX_StateLawEnforcement.pdf","title":"-"}},"comments":[],"referencesCount":0},{"id":535,"title":"TrapX Deception Grid for manufacturer of steel products","description":"<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">The manufacturing case study focuses on one of the largest </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">manufacturers of steel products to include tubing, pipe and sheet. Assets </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">included a very large network for industrial control systems (ICS) and </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">the necessary supervisory control and data acquisition (SCADA) </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">components which run their manufacturing processes end to end. Prior </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">to our involvement, this manufacturer had routinely removed routine </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">threats but were unaware of sophisticated malware infection or advanced </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">persistent threats. The customer had a large industry suite of cyber </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">defense products which included a firewall, anti-virus suites, multiple </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">intrusion detection software products, endpoint security and other </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">software.</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">Immediately upon installation, the TrapX DeceptionGrid generated </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">ALERTS and identified malicious activity in two key locations. Both of </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">these were on SCADA processors which were central to the </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">manufacturing process. An attack in this area could severely disrupt </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">ongoing manufacturing processes causing both a shut-down and millions </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">of dollars in potential loss. Our analysis it was determined that both of </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">these malicious processes were communicating through TOR to their </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">attackers. In one case the malicious process was attempting to establish </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">a new command and control connection through TOR. In the other case </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">command and control was established and many types of malware were </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">resident on the station.</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; font-weight: bold;\">Broad Scale Attack Deployed Through One Entry Point</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">TrapX found several types of malware deployed in this SCADA processor. </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">TR-Dropper.Gen2.trojan allowed full access and control of the infected </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">end-point. It allows for the collection and exfiltration of confidential </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">data. Additionally we found Packed.Win32.Katusha.e malware stealing </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">passwords which was communicating back to attacker IP addresses </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">through TOR.</span>\r\n<span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px; \">Over several additional weeks, DeceptionGrid detected lateral movement </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">by attackers that identified two additional command and control sites. </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">The customer coordinated with TrapX and SCADA component vendors to </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">determine the impact of the attack, to eliminate it and then to reprovision </span><span style=\"color: rgb(0, 0, 0); font-family: Verdana, sans-serif; font-size: 12px;\">the software in all of the effected components.</span>\r\n","alias":"trapx-deception-grid-for-manufacturer-of-steel-products","roi":0,"seo":{"title":"TrapX Deception Grid for manufacturer of steel products","keywords":"control, TrapX, malware, were, which, SCADA, products, this","description":"The manufacturing case study focuses on one of the largest manufacturers of steel products to include tubing, pipe and sheet. Assets included a very","og:title":"TrapX Deception Grid for manufacturer of steel products","og:description":"The manufacturing case study focuses on one of the largest manufacturers of steel products to include tubing, pipe and sheet. Assets included a very"},"deal_info":"","user":{"id":4195,"title":"Hidden user","logoURL":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg","alias":"skrytyi-polzovatel","address":"","roles":[],"description":"User Information is confidential ","companyTypes":[],"products":{},"vendoredProductsCount":0,"suppliedProductsCount":0,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":13,"supplierImplementationsCount":0,"vendorImplementationsCount":0,"vendorPartnersCount":0,"supplierPartnersCount":0,"b4r":0,"categories":{},"companyUrl":"","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"Hidden user","keywords":"Hidden, user, User, Information, confidential","description":"User Information is confidential ","og:title":"Hidden user","og:description":"User Information is confidential ","og:image":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg"},"eventUrl":""},"supplier":{},"vendors":[{"id":3890,"title":"TrapX","logoURL":"https://old.b4r.io/uploads/roi/company/TrapX.png","alias":"trapx","address":"","roles":[],"description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be attackers with turn-key decoys (traps) that “imitate” your true assets. Hundreds or thousands of traps can be deployed with little effort, creating a virtual mine field for cyberattacks, alerting you to any malicious activity with actionable intelligence immediately.","companyTypes":[],"products":{},"vendoredProductsCount":1,"suppliedProductsCount":1,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":0,"supplierImplementationsCount":0,"vendorImplementationsCount":9,"vendorPartnersCount":0,"supplierPartnersCount":1,"b4r":0,"categories":{},"companyUrl":"https://trapx.com/","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"TrapX","keywords":"with, TrapX, field, that, traps, little, creating, deployed","description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:title":"TrapX","og:description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:image":"https://old.b4r.io/uploads/roi/company/TrapX.png"},"eventUrl":""}],"products":[],"countries":[],"startDate":"0000-00-00","endDate":"0000-00-00","dealDate":"0000-00-00","price":0,"status":"finished","isImplementation":true,"isAgreement":false,"confirmed":1,"implementationDetails":{},"categories":[],"additionalInfo":{"budgetNotExceeded":"","functionallyTaskAssignment":"","projectWasPut":"","price":0,"source":{"url":"https://share.trapx.com/dl/s1mqPwZmMA","title":"-"}},"comments":[],"referencesCount":0},{"id":428,"title":"TrapX DeceptionGrid Platform для страховой отрасли","description":"<span style=\"font-weight: bold;\">Целевая атака на данные аутентификации</span>\r\n<span style=\"font-weight: bold;\">Предыстория проекта - оценка технологии</span>\r\nВ нашем финансовом исследовании основное внимание уделяется глобальному страховому учреждению. До этого времени абсолютно никаких индикаторов заражения вредоносными программами или постоянных угроз, видимых клиенту, не было. У клиента была обширная комплектация продуктов для защиты от кибер атак, которая включала брандмауэр, антивирусы, программное обеспечение для обнаружения вторжений, Endpoint и другое программное обеспечение.\r\nВ течение короткого периода времени TrapX DeceptionGrid создал ALERTS и идентифицировал два злонамеренных отдельных процесса, связанных с неавторизованным боковым движением в сети страховой компании.\r\nПосле анализа было установлено, что оба этих вредоносных процесса связывались с несколькими точками соединения в России.\r\nЭти точки соединения в России и другое вложенное программное обеспечение взяты вместе как расширенный перехватчик паролей. Нападавшие открыли сеть и записали информацию о пароле. Это адресная кража учетных данных для проверки подлинности представляла собой серьезную угрозу целостности общих операций компании. В настоящее время он не определил, в какой степени пароли были захвачены до обнаружения.\r\nДругие вредоносные программы с меньшим уровнем риска, идентифицированные DeceptionGrid, включают Trj / Downloader.LEK Trojan, Trojan_QHOST.DB Trojan и червь W32.Greypack. Все они не были обнаружены клиентами существующего кибер-пакета. Анализ предполагает, что, по крайней мере, один из них мог быть обнаружен, но оповещения были пропущены против объема общего трафика.\r\n<span style=\"font-weight: bold;\">Критические и конфиденциальные учетные данные под угрозой</span>\r\nTrapX определил, что критически важные и конфиденциальные данные пароля были отправлены в Россию. В настоящее время масштабы компрометации данных все еще недостаточно изучены, и глобальная страховая фирма взяла на себя превентивные меры по замене полномочий на подозрительные программные системы.\r\n","alias":"trapx-deceptiongrid-platform-dlja-strakhovoi-otrasli","roi":0,"seo":{"title":"TrapX DeceptionGrid Platform для страховой отрасли","keywords":"были, TrapX, программное, обеспечение, данные, DeceptionGrid, соединения, конфиденциальные","description":"Целевая атака на данные аутентификации\rПредыстория проекта - оценка технологии\rВ нашем финансовом исследовании основное внимание уделяется глобальному","og:title":"TrapX DeceptionGrid Platform для страховой отрасли","og:description":"Целевая атака на данные аутентификации\rПредыстория проекта - оценка технологии\rВ нашем финансовом исследовании основное внимание уделяется глобальному"},"deal_info":"","user":{"id":4195,"title":"Hidden user","logoURL":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg","alias":"skrytyi-polzovatel","address":"","roles":[],"description":"User Information is confidential ","companyTypes":[],"products":{},"vendoredProductsCount":0,"suppliedProductsCount":0,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":13,"supplierImplementationsCount":0,"vendorImplementationsCount":0,"vendorPartnersCount":0,"supplierPartnersCount":0,"b4r":0,"categories":{},"companyUrl":"","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"Hidden user","keywords":"Hidden, user, User, Information, confidential","description":"User Information is confidential ","og:title":"Hidden user","og:description":"User Information is confidential ","og:image":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg"},"eventUrl":""},"supplier":{},"vendors":[{"id":3890,"title":"TrapX","logoURL":"https://old.b4r.io/uploads/roi/company/TrapX.png","alias":"trapx","address":"","roles":[],"description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be attackers with turn-key decoys (traps) that “imitate” your true assets. Hundreds or thousands of traps can be deployed with little effort, creating a virtual mine field for cyberattacks, alerting you to any malicious activity with actionable intelligence immediately.","companyTypes":[],"products":{},"vendoredProductsCount":1,"suppliedProductsCount":1,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":0,"supplierImplementationsCount":0,"vendorImplementationsCount":9,"vendorPartnersCount":0,"supplierPartnersCount":1,"b4r":0,"categories":{},"companyUrl":"https://trapx.com/","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"TrapX","keywords":"with, TrapX, field, that, traps, little, creating, deployed","description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:title":"TrapX","og:description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:image":"https://old.b4r.io/uploads/roi/company/TrapX.png"},"eventUrl":""}],"products":[],"countries":[],"startDate":"0000-00-00","endDate":"0000-00-00","dealDate":"0000-00-00","price":0,"status":"finished","isImplementation":true,"isAgreement":false,"confirmed":1,"implementationDetails":{},"categories":[],"additionalInfo":{"budgetNotExceeded":"","functionallyTaskAssignment":"","projectWasPut":"","price":0,"source":{"url":"https://trapx.com/wp-content/uploads/2017/08/Case_Study_TrapX_Finance_Insurance.pdf","title":"-"}},"comments":[],"referencesCount":0},{"id":429,"title":"TrapX DeceptionGrid Platform для правительственной организации","description":"<p style=\"background-color: rgb(255, 255, 255); \"><span style=\"font-weight: bold; \">Кибер атаки на правительственную организацию</span></p>\r\n<p style=\"background-color: rgb(255, 255, 255); \"><span style=\"font-weight: bold; \">Предыстория проекта - оценка технологии</span></p>\r\n<p style=\"background-color: rgb(255, 255, 255); \">Крупное национальное правительственное агентство имеет сотни сотрудников и множество объектов, распределнных по большой географической площади. Это агентство хотело узнать больше о технологии ловушек как части своей регулярной оценки вендоров кибербезопасности.</p>\r\n<p style=\"background-color: rgb(255, 255, 255); \"><span style=\"font-weight: bold; \">Атаки обнаружены в нескольких районах </span></p>\r\n<p style=\"background-color: rgb(255, 255, 255); \">Практически сразу после введения DeceptionGrid в действие и в течение нескольких недель команда государственной безопасности получила несколько предупреждений об атаках высокой важности. Это была одна из самых массивных атак, которые мы когда-либо открывали. Мы идентифицировали нескольких злоумышленников в нескольких областях, чтобы включить более пяти (5+) злоумышленников с использованием вредоносных серверов, более пяти (5+) злоумышленников, связывающих обратный поток данных с серверами botnet c и c и более пятидесяти (50+) удаленных злоумышленников с использованием анонимного прокси TOR, чтобы скрыть исходные IP-адреса. В некоторых случаях вредоносное ПО автоматически захватывалось и вводилось в песочницу для дальнейшего анализа. Несколько злоумышленников установили команду и контроль и обошли весь массив существующих средств защиты от вторжений, защиты брандмауэра, конечной точки и периметра.</p>\r\n<p style=\"background-color: rgb(255, 255, 255); \">Вредоносные программы, кторые были обнаружены: Cryptowall, P2P Malware, Trojan-Banker, TrojanRansome, Mobogenie.B и WS.Reputation.1.</p>\r\n<p style=\"background-color: rgb(255, 255, 255); \"><span style=\"font-weight: bold; \">Эксфильтрация обнаруженных данных - Требуется широкомасштабное восстановление</span></p>\r\n<p style=\"background-color: rgb(255, 255, 255); \">Векторы атаки существенно различались и скомпрометировали рабочие станции и серверы в разных отделах. Необходимая коррекция была выполнена в широких масштабах и включала в себя репродуцирование как рабочих станций, так и серверов. Привлеченное правительство было вынуждено либо повторно предусмотреть в больших масштабах, либо выполнить более продолжительный анализ дампа памяти, чтобы лучше понять степень проникновения этого разнообразного сочетания нападавших. Исходные IP-адреса злоумышленников, как известно, являются конфиденциальными в настоящее время и частью продолжающегося уголовного расследования.</p>","alias":"trapx-deceptiongrid-platform-dlja-pravitelstvennoi-organizacii","roi":0,"seo":{"title":"TrapX DeceptionGrid Platform для правительственной организации","keywords":"attackers, over, multiple, government, servers, agency, This, this","description":"Кибер атаки на правительственную организацию\rПредыстория проекта - оценка технологии\rКрупное национальное правительственное агентство имеет сотни сотрудников и","og:title":"TrapX DeceptionGrid Platform для правительственной организации","og:description":"Кибер атаки на правительственную организацию\rПредыстория проекта - оценка технологии\rКрупное национальное правительственное агентство имеет сотни сотрудников и"},"deal_info":"","user":{"id":4195,"title":"Hidden user","logoURL":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg","alias":"skrytyi-polzovatel","address":"","roles":[],"description":"User Information is confidential ","companyTypes":[],"products":{},"vendoredProductsCount":0,"suppliedProductsCount":0,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":13,"supplierImplementationsCount":0,"vendorImplementationsCount":0,"vendorPartnersCount":0,"supplierPartnersCount":0,"b4r":0,"categories":{},"companyUrl":"","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"Hidden user","keywords":"Hidden, user, User, Information, confidential","description":"User Information is confidential ","og:title":"Hidden user","og:description":"User Information is confidential ","og:image":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg"},"eventUrl":""},"supplier":{},"vendors":[{"id":3890,"title":"TrapX","logoURL":"https://old.b4r.io/uploads/roi/company/TrapX.png","alias":"trapx","address":"","roles":[],"description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be attackers with turn-key decoys (traps) that “imitate” your true assets. Hundreds or thousands of traps can be deployed with little effort, creating a virtual mine field for cyberattacks, alerting you to any malicious activity with actionable intelligence immediately.","companyTypes":[],"products":{},"vendoredProductsCount":1,"suppliedProductsCount":1,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":0,"supplierImplementationsCount":0,"vendorImplementationsCount":9,"vendorPartnersCount":0,"supplierPartnersCount":1,"b4r":0,"categories":{},"companyUrl":"https://trapx.com/","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"TrapX","keywords":"with, TrapX, field, that, traps, little, creating, deployed","description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:title":"TrapX","og:description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:image":"https://old.b4r.io/uploads/roi/company/TrapX.png"},"eventUrl":""}],"products":[],"countries":[],"startDate":"0000-00-00","endDate":"0000-00-00","dealDate":"0000-00-00","price":0,"status":"finished","isImplementation":true,"isAgreement":false,"confirmed":1,"implementationDetails":{},"categories":[],"additionalInfo":{"budgetNotExceeded":"","functionallyTaskAssignment":"","projectWasPut":"","price":0,"source":{"url":"https://trapx.com/wp-content/uploads/2017/08/Case_Study_TrapX_NationalGovernment.pdf","title":"-"}},"comments":[],"referencesCount":0},{"id":430,"title":"TrapX DeceptionGrid Platform для производителя ПО","description":"<span style=\"font-weight: 700; \">Атаки нацелены на ведущего вендра программного обеспечения</span>\r\n<span style=\"font-weight: 700; \"><br /></span>\r\n<span style=\"font-weight: 700; \">Предыстория проекта - оценка технологии</span>\r\n<span style=\"font-weight: 700; \"><br /></span>\r\nВедущий поставщик программного обеспечения предоставляет программное обеспечение через облачные сервисы своим клиентам в сфере здравоохранения. Команда информационных технологий этого клиента в значительной степени инвестировала средства в защиту компьютерной безопасности. Их центр оперативной безопасности регулярно обнаруживал вредоносное ПО и смог регулярно исправлять все эти известные инциденты.\r\nУ клиента был сильный отраслевой пакет продуктов для защиты от кибернетики, который включал брандмауэры, антивирусные комплекты, программное обеспечение для обнаружения вторжений, защиту конечных точек и другое программное обеспечение. Наша первоначальная установка включала более десяти (10) vLANS.\r\nDeceptionGrid был введен в действие. Практически сразу клиентские информационные технологии получили несколько предупреждений о высокого приоритета. Они включали выявленную подозрительную деятельность и привели к обнаружению нескольких сетевых неверных конфигураций. Несколько внутренних интернет-адресов были открыты в Интернете и открыты для различных протоколов высокого риска. Входящие подключения от злоумышленников осуществлялись через SSH, Telnet и Remote Desktop. Обманный прокси-сервер TOR (анонимный прокси-сервер) отображал все выставленные хосты.\r\nНекоторые из вредоносных программ были автоматически захвачены и инъецированы в песочницу DeceptionGrid для продолжения анализа. Нападавшие имели несколько контрольных точек и обходили весь массив существующей безопасности.\r\n<span style=\"font-weight: 700; \"><br /></span>\r\n<span style=\"font-weight: 700; \">Обнаружено и устранено несколько одновременных атакующих</span>\r\n<span style=\"font-weight: 700; \"><br /></span>\r\nПродолжалось полное расследование, так как DeceptionGrid продолжал отслеживать и отслеживать движение вредоносных программ. Несколько командных и контрольных точек на шести (6) рабочих станциях были связаны с нападавшими в Пекине, Китае, Молдове, и в нескольких точках на территории Украины. Десятки рабочих станций должны были быть репродуцированы для устранения доступа. Для многих объектов информационной технологии необходимо было отображать дамп и анализ вручную, чтобы определить весь масштаб обширной и ранее не обнаруженной активности злоумышленника. Объем кражи данных остается неопределенным. Несколько злоумышленников обращались к сетевым рабочим станциям и серверам этой технологической компании. Объем исследований и хищения данных об интеллектуальной собственности неизвестен, но расследование продолжается.","alias":"trapx-deceptiongrid-platform-dlja-proizvoditelja-po","roi":0,"seo":{"title":"TrapX DeceptionGrid Platform для производителя ПО","keywords":"были, DeceptionGrid, несколько, безопасности, программное, технологии, обеспечение, точек","description":"Атаки нацелены на ведущего вендра программного обеспечения\r\rПредыстория проекта - оценка технологии\r\rВедущий поставщик программного обеспечения предоставляет","og:title":"TrapX DeceptionGrid Platform для производителя ПО","og:description":"Атаки нацелены на ведущего вендра программного обеспечения\r\rПредыстория проекта - оценка технологии\r\rВедущий поставщик программного обеспечения предоставляет"},"deal_info":"","user":{"id":4195,"title":"Hidden user","logoURL":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg","alias":"skrytyi-polzovatel","address":"","roles":[],"description":"User Information is confidential ","companyTypes":[],"products":{},"vendoredProductsCount":0,"suppliedProductsCount":0,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":13,"supplierImplementationsCount":0,"vendorImplementationsCount":0,"vendorPartnersCount":0,"supplierPartnersCount":0,"b4r":0,"categories":{},"companyUrl":"","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"Hidden user","keywords":"Hidden, user, User, Information, confidential","description":"User Information is confidential ","og:title":"Hidden user","og:description":"User Information is confidential ","og:image":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg"},"eventUrl":""},"supplier":{},"vendors":[{"id":3890,"title":"TrapX","logoURL":"https://old.b4r.io/uploads/roi/company/TrapX.png","alias":"trapx","address":"","roles":[],"description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be attackers with turn-key decoys (traps) that “imitate” your true assets. Hundreds or thousands of traps can be deployed with little effort, creating a virtual mine field for cyberattacks, alerting you to any malicious activity with actionable intelligence immediately.","companyTypes":[],"products":{},"vendoredProductsCount":1,"suppliedProductsCount":1,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":0,"supplierImplementationsCount":0,"vendorImplementationsCount":9,"vendorPartnersCount":0,"supplierPartnersCount":1,"b4r":0,"categories":{},"companyUrl":"https://trapx.com/","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"TrapX","keywords":"with, TrapX, field, that, traps, little, creating, deployed","description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:title":"TrapX","og:description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:image":"https://old.b4r.io/uploads/roi/company/TrapX.png"},"eventUrl":""}],"products":[],"countries":[],"startDate":"0000-00-00","endDate":"0000-00-00","dealDate":"0000-00-00","price":0,"status":"finished","isImplementation":true,"isAgreement":false,"confirmed":1,"implementationDetails":{},"categories":[],"additionalInfo":{"budgetNotExceeded":"","functionallyTaskAssignment":"","projectWasPut":"","price":0,"source":{"url":"https://trapx.com/wp-content/uploads/2017/08/Case_Study_TrapX_Software.pdf","title":"-"}},"comments":[],"referencesCount":0},{"id":431,"title":"TrapX DeceptionGrid Platform для правоохранительных органов","description":"<span style=\"font-weight: 700; \">Целевые атаки на правоохранительные данные</span>\r\n<span style=\"font-weight: 700; \"><br /></span>\r\n<span style=\"font-weight: 700; \">Предыстория проекта - оценка технологии</span>\r\n<span style=\"font-weight: 700; \"><br /></span>\r\nПравоохранительный орган, несет ответственность за многие виды деятельности, которые могут включать расследования организованной преступности и террористической деятельности с высоким уровнем секретности. Это агентство всегда заинтересовано в улучшении своей киберзащиты и выделяет большой бюджет для приобретения технологий защиты. Приоритеты этого агентства включают защиту конфиденциальности их текущих операций, внутренних процессов и их персонала.\r\nЭто агентство провело опрос поставщиков технологий и захотело узнать больше об технологии ловушек. Они были знакомы с унаследованной технологией honeypot и нашли эту технологию слишком дорогой, как с точки зрения ресурсов, так и с учетом финансовых затрат. Это агентство было очень осторожным и разделило несколько сетей внутри предприятия. Некоторые из них должны использоваться исключительно для конфиденциальных (классифицированных) данных - для данных с меньшей конфиденциальностью.\r\nDeceptionGrid был введен в действие. В течение одной недели команда безопасности клиентов (SOC) получила сообщение с высоким приоритетом, указывающее на боковое перемещение передовой угрозы. Вредоносная программа была автоматически захвачена и введена в песочницу для дальнейшего анализа. Нападавшие установили сложную команду и контроль и обошли весь набор существующих средств защиты от вторжений, защиты брандмауэра, конечной точки и периметра.\r\nПродолжалось полное расследование, так как DeceptionGrid продолжал отслеживать и отслеживать движение вредоносных программ. Группа по операциям по обеспечению безопасности агентства установила, что в их протоколе произошло внутреннее нарушение. Связь, нарушающая процедуры обслуживания агентства, была обнаружена между их защищенной сетью и одной из менее безопасных сетей (более низкий рейтинг безопасности). Это нарушение в протоколе позволило получить доступ злоумышленника.\r\n<span style=\"font-weight: 700; \"><br /></span>\r\n<span style=\"font-weight: 700; \">Эксфиляция данных, обнаружение и остановка</span>\r\n<span style=\"font-weight: 700; \"><br /></span>\r\nБыло обнаружено, что злоумышленник двинулся без обнаружения во всей сети правоохранительных органов и на серверах. Было более десяти явных боковых движений, сделанных до обнаружения DeceptionGrid. Нападавший обнаружил и расширил данные, включая конфиденциальные записи персонала агентства, их информацию о I.D., их фотографии и другие конфиденциальные данные. DeceptionGrid позволил агентству нарушить атаку, а затем уверенно восстановить обычные протоколы безопасности.","alias":"trapx-deceptiongrid-platform-dlja-pravookhranitelnykh-organov","roi":0,"seo":{"title":"TrapX DeceptionGrid Platform для правоохранительных органов","keywords":"DeceptionGrid, безопасности, агентства, защиты, агентство, данные, данных, обнаружения","description":"Целевые атаки на правоохранительные данные\r\rПредыстория проекта - оценка технологии\r\rПравоохранительный орган, несет ответственность за многие виды","og:title":"TrapX DeceptionGrid Platform для правоохранительных органов","og:description":"Целевые атаки на правоохранительные данные\r\rПредыстория проекта - оценка технологии\r\rПравоохранительный орган, несет ответственность за многие виды"},"deal_info":"","user":{"id":4195,"title":"Hidden user","logoURL":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg","alias":"skrytyi-polzovatel","address":"","roles":[],"description":"User Information is confidential ","companyTypes":[],"products":{},"vendoredProductsCount":0,"suppliedProductsCount":0,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":13,"supplierImplementationsCount":0,"vendorImplementationsCount":0,"vendorPartnersCount":0,"supplierPartnersCount":0,"b4r":0,"categories":{},"companyUrl":"","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"Hidden user","keywords":"Hidden, user, User, Information, confidential","description":"User Information is confidential ","og:title":"Hidden user","og:description":"User Information is confidential ","og:image":"https://old.b4r.io/uploads/roi/company/hidden_user.jpg"},"eventUrl":""},"supplier":{},"vendors":[{"id":3890,"title":"TrapX","logoURL":"https://old.b4r.io/uploads/roi/company/TrapX.png","alias":"trapx","address":"","roles":[],"description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be attackers with turn-key decoys (traps) that “imitate” your true assets. Hundreds or thousands of traps can be deployed with little effort, creating a virtual mine field for cyberattacks, alerting you to any malicious activity with actionable intelligence immediately.","companyTypes":[],"products":{},"vendoredProductsCount":1,"suppliedProductsCount":1,"supplierImplementations":[],"vendorImplementations":[],"userImplementations":[],"userImplementationsCount":0,"supplierImplementationsCount":0,"vendorImplementationsCount":9,"vendorPartnersCount":0,"supplierPartnersCount":1,"b4r":0,"categories":{},"companyUrl":"https://trapx.com/","countryCodes":[],"certifications":[],"isSeller":false,"isSupplier":false,"isVendor":false,"presenterCodeLng":"","seo":{"title":"TrapX","keywords":"with, TrapX, field, that, traps, little, creating, deployed","description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:title":"TrapX","og:description":"TrapX has created a new generation of deception technology that provides real-time breach detection and prevention. Our field proven solution deceives would-be","og:image":"https://old.b4r.io/uploads/roi/company/TrapX.png"},"eventUrl":""}],"products":[],"countries":[],"startDate":"0000-00-00","endDate":"0000-00-00","dealDate":"0000-00-00","price":0,"status":"finished","isImplementation":true,"isAgreement":false,"confirmed":1,"implementationDetails":{},"categories":[],"additionalInfo":{"budgetNotExceeded":"","functionallyTaskAssignment":"","projectWasPut":"","price":0,"source":{"url":"https://trapx.com/wp-content/uploads/2017/08/Case_Study_TrapX_StateLawEnforcement.pdf","title":"-"}},"comments":[],"referencesCount":0}]}},"aliases":{},"links":{},"meta":{},"loading":false,"error":null,"useProductLoading":false,"sellProductLoading":false,"templatesById":{},"comparisonByTemplateId":{}},"filters":{"filterCriterias":{"loading":false,"error":null,"data":{"price":{"min":0,"max":6000},"users":{"loading":false,"error":null,"ids":[],"values":{}},"suppliers":{"loading":false,"error":null,"ids":[],"values":{}},"vendors":{"loading":false,"error":null,"ids":[],"values":{}},"roles":{"id":200,"title":"Roles","values":{"1":{"id":1,"title":"User","translationKey":"user"},"2":{"id":2,"title":"Supplier","translationKey":"supplier"},"3":{"id":3,"title":"Vendor","translationKey":"vendor"}}},"categories":{"flat":[],"tree":[]},"countries":{"loading":false,"error":null,"ids":[],"values":{}}}},"showAIFilter":false},"companies":{"companiesByAlias":{},"aliases":{},"links":{},"meta":{},"loading":false,"error":null},"implementations":{"implementationsByAlias":{},"aliases":{},"links":{},"meta":{},"loading":false,"error":null},"agreements":{"agreementById":{},"ids":{},"links":{},"meta":{},"loading":false,"error":null},"comparison":{"loading":false,"error":false,"templatesById":{"28":{"id":28,"title":"Deception Techniques and Honeypots"}},"comparisonByTemplateId":{},"products":[],"selectedTemplateId":null},"presentation":{"type":null,"company":{},"products":[],"partners":[],"formData":{},"dataLoading":false,"dataError":false,"loading":false,"error":false},"catalogsGlobal":{"subMenuItemTitle":""}}