Virtualization Technology News and Information
Article
RSS
Acalvio Partners with Splunk on Deception-Based Ransomware Solution
Acalvio Technologies, an innovator in Advanced Threat Defense, today announced the immediate availability of ShadowPlex-R, a comprehensive, distributed-deception solution for early, accurate and cost-effective detection and mitigation of ransomware. ShadowPlex-R is based on Acalvio's patented Deception 2.0 technology, which delivers automated and authentic enterprise-scale deception with low IT impact.

ShadowPlex-R integrates with Splunk Enterprise Security (Splunk ES) to deliver comprehensive threat intelligence and ensure timely and efficient remediation for customers. Acalvio is a member of the Splunk Adaptive Response Initiative, which brings together leading vendors to leverage end-to-end context and automated response to help organizations better combat advanced attacks through a unified defense. Acalvio is offering a free trial of ShadowPlex-R which can be obtained here (http://acalvio.com/ransomware). Acalvio (booth #365) and Splunk (booth #1254) will be participating at Black Hat USA 2017 where security specialists will be available to demonstrate the capabilities of ShadowPlex-R and discuss the benefits of Deception 2.0 technology.

"Ransomware is the latest scourge of the internet, extorting millions of dollars from people and organizations after infecting and encrypting their systems," said Bryan Sartin, Executive Director, Global Security Services, Verizon Enterprise Solutions. "We have seen ransomware jump from the 22nd most common variety of malware in the 2014 DBIR to the fifth most common in this year's data. In the past year, we have seen more technical and process innovation in ransomware than we have seen since the invention of Bitcoin-enabled anonymous payments. Fueled by the success of early attacks, organized criminal groups will continue to utilize ransomware to extort money. A solution, such as ShadowPlex-R, is needed to address today's growing ransomware problem."

The market for ransomware protection is projected to grow to $17.36B by 2021, at a Compounded Annual Growth Rate (CAGR) of 16.3% according to a recent report by MarketsandMarkets. This demonstrates the compelling need for more sophisticated security solutions to address the ransomware problem. Moving forward, it will be important for organizations to utilize a deception-centric solution to detect ransomware for its inherent advantages over traditional detection solutions.

ShadowPlex-R's patent-pending algorithms quickly detect and stop ransomware and its crippling effects. Specific benefits include:

●        Effective Detection: ShadowPlex-R presents attackers with a comprehensive palette of realistic and non-fingerprintable decoys, lures, baits and breadcrumbs that blend in with an organization's production assets. These serve as sensors and any compromise to them results in very high fidelity detection.

●        Scalable and Flexible Deployment: ShadowPlex-R employs a DevOps approach to deploying deceptions. By dynamically and automatically deploying the most effective and relevant deceptions, ShadowPlex-R dramatically reduces the cost of operation compared to first generation deception products. By delivering deception from and to public clouds, private clouds and on-premises environments, organizations can deploy dynamic deceptions wherever their assets are deployed.

●        Low IT Impact: ShadowPlex-R dramatically lowers the cost of operation while simultaneously increasing efficacy, when compared to first generation deception products, by dynamically and automatically deploying the most effective and relevant deceptions.

"Our solution represents a fundamental leap over prevailing signature-based and anomaly-based approaches," said Ram Varadarajan, CEO, Acalvio. "ShadowPlex-R builds on our Deception 2.0 platform to detect ransomware in the most efficient fashion, and leverages Splunk to deliver comprehensive threat intelligence and timely remediation. Through a unique combination of distributed deception and Splunk, ShadowPlex-R provides a fundamentally new and effective way to detect and respond to Ransomware."

"Ransomware is a rapidly growing problem and requires a new approach to keep up with the rapid pace of its development," said Michael Osterman, Principal Analyst of Osterman Research. "Acalvio's unique and clever use of deception technology, plus its integration with Splunk's Threat Intelligence and Adaptive Response solution, promises to offer a robust and effective method of minimizing the likelihood of a ransomware infection."

"The growing threat of ransomware is leaving Security Operations Centers (SOCs) around the world scrambling for better answers. With ShadowPlex-R and its integration with Splunk Enterprise Security, Acalvio has created a first-of-its-kind solution to help detect and stop ransomware in its tracks," said Haiyan Song, senior vice president of security markets, Splunk. "By combining delivery of high-fidelity alerts and comprehensive threat intelligence specific to ransomware with the Adaptive Response framework provided by Splunk Enterprise Security, Acalvio has built an innovative solution that helps enable faster detection and remediation against ransomware. We're proud to partner with Acalvio to assist organizations around the world as they employ new detection techniques and address ransomware with security analytics."

"ShadowPlex-R is one of the most innovative solutions currently available in the ransomware space," said Golan Ben-Oni, CIO at IDT Corporation. "The combination of low false positives, low IT impact and cost-effectiveness makes it one of the most compelling solutions in the industry. We are very pleased to partner with Acalvio in this effort."

ShadowPlex is a comprehensive, distributed deception platform that provides early, accurate and cost-effective detection of malicious activity within the enterprise. ShadowPlex is built on Acalvio's patented Deception 2.0 technology which alleviates inherent structural limitations of Deception 1.0 solutions by leveraging data science and dynamic deception. It represents a quantum leap in architectural advancement that delivers scale, automation and authenticity with low IT overhead. ShadowPlex is designed for flexible deployment on-premises, private clouds and public clouds. The platform has pre-built integration with major security information event management (SIEM) systems for delivering comprehensive threat intelligence.

Published Thursday, July 20, 2017 10:34 AM by David Marshall
Filed under:
Comments
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
top25
Calendar
<July 2017>
SuMoTuWeThFrSa
2526272829301
2345678
9101112131415
16171819202122
23242526272829
303112345