Blue Hexagon, a leading
agentless cloud-native AI security platform, announced the native integration
of Blue Hexagon's industry-leading real-time deep learning based threat
detection with AWS Network Firewall for real-time protection. This integration
provides protection against known threats, variants of known threats, as well
as unknown 0-day threats for which no signatures exist. As the leading
cloud security platform, for actionable visibility, real-time threat defense
and continuous compliance, this integration underscores Blue Hexagon's
commitment to delivering innovative solutions to the AWS customers who need to
secure their data, network and workloads in the cloud.
The modern threat landscape
consists of threat actors using automation to create
evasive threat variants at scale and to unleash targeted threats and campaigns
using custom ephemeral infrastructure (IPs/domains/URLs) that they control.
Such threats are incredibly hard to detect in a timely fashion using legacy
signature-based network controls such as IDPS or sandbox.
"This integration with AWS
Network Firewall builds on our existing partnership with AWS for comprehensive
cloud security." said Nayeem Islam, CEO and Co-founder, Blue Hexagon. "Blue Hexagon's
industry leading network-based cloud threat detection complements the core
firewalling functions provided by AWS Network
Firewall, and provides real time protection against both known and unknown
network threats."
Blue Hexagon Agentless AI
Security provides the most accurate threat detection from the network vantage
point and supersedes legacy signature-based network controls and sandbox
technologies. Blue Hexagon dynamically detects novel threats that may be trying
to infiltrate and spread in the cloud environment
and creates and updates IP/domain block-rules within AWS Network Firewall in
real time to drop connections and stop threats in their tracks. Blue Hexagon
Real Time Threat Defense is designed for all workloads including against 0-day
threats, without impacting performance and privacy. The solution can be
deployed within minutes and customers can manage the integration using
CloudFormation templates and apply advanced protection firewall policy
uniformly across all VPCs, regions, and accounts.
"The threat landscape has
changed dramatically in the past few years, with signature-based IDS tools
being increasingly ineffective against such threats. Furthermore, managing IDS
rulesets is yet another burden on my IT security staff. Blue Hexagon Cloud
Security effectively tackles both problems by catching both known and unknown
threats in a unified manner through the power of real-time Deep Learning
AI." said Binay Gupta,
Vice President of Business Systems at Prime
Communications.
With the Blue Hexagon Cloud-Native AI
Security integration with AWS Network Firewall, security professionals can
immediately stop a range of cloud threats, for example:
- Stop
known and unknown malware/ransomware downloads
- Terminate
Command-and-Control (C&C or C2) connections over multiple protocols such as
HTTP, HTTPS, DNS
- Terminate
data exfiltration via hard-to-detect TTPs such as DNS exfiltration
- Terminate
Cryptomining detected via network behaviors
- Terminate
unauthorized activity such as port scans, lateral movement, E-W discovery and
attacks over SMB and other protocols
- Stop
malicious Cloud Activity (asset discovery, enumeration, privilege escalation)
from malicious IPs
Blue
Hexagon has been recognized in Forbes AI 50 for Next Gen NDR innovation,
included in the 2020 Gartner Market Guide for Network Detection and Response,
named to CNBC's Upstart 100 list of "World's Most Promising Startups", was
tested by Miercom as the most effective of four leading
security products against the most lethal zero-day malware, ransomware, worms,
botnets and evasive malicious threats and was most recently named to the 2021
CB Insights AI-100 list of "Most Innovative Artificial Intelligence Startups"
and included in CRN's "The 10 Hottest AI Security Companies" list.