DATA SECURITY

Cybersecurity Startup BitTrap Develops Groundbreaking Detection Technology to Address Surge in Cyberattacks

BitTrap | October 05, 2021

Startup company BitTrap has announced a blockchain-based cybersecurity solution that leverages attackers' motivations to provide singular detection capabilities. This approach differs from cybersecurity paradigms that focus on trying to keep attackers from breaking in. Instead, it assumes some have already made their way inside a network, undetected, and is designed to identify them and reduce hacker dwell time in the compromised system.

The system works by deploying a vast network of wallets in every endpoint or cloud instance. Each wallet contains a risk-adjusted bounty of cryptocurrency assets calibrated, based on research from the BitTrap Attacker Behavioral Labs, to ensure it will capture an attacker's attention. Collecting the bounty triggers an incident-response operation that alerts the organization of the breach, effectively causing the hacker to reveal their presence. The vulnerability can be quickly assessed and patched while avoiding ransomware and data exfiltration altogether.

BitTrap began operations in 2020 after cyberattacks multiplied during the global pandemic. The company's founders, who combine decades of industry experience in cybersecurity and expertise in attacker behavior, developed the groundbreaking technology to help companies actually benefit from cyberattacks. "It is very important to capitalize on security incidents, using each opportunity to learn and prioritize efforts," said BitTrap CTO Ariel Futoransky. "We need to understand our adversaries' main motivation and use it to overcome our challenges and reduce the impact of attacks. With our unique approach, we can tackle both issues at the same time. We go a long way beyond intrusion detection or deception."

The company is particularly proud of the new solution. Through the company's Attacker Behavioral Labs, Altszul said, "We intend to keep investing and developing the most sophisticated capacity in the industry to understand attacker behavior. After our initial success, we are getting ready to raise a new round of financing to fuel our expansion in the market.

BitTrap CEO Jonatan Altszul

About BitTrap
BitTrap is a cybersecurity solution company with a groundbreaking crypto approach, changing how companies face and resolve attacks while saving money along the way. BitTrap triggers immediate alarms using risk-adjusted economic incentives to reveal vulnerabilities without compromising performance. We go far beyond deception technology.

Spotlight

TODAY’S SECURITY IS NOT SECURE. It’s Time for a Massive Rethink in Security Tens of billions of dollars are being spent on cyber security annually, yet organizations are still being breached at an alarming rate. $75B+ spent on cyber security technology like firewalls, virtual private networks (VPNs), and antivirus software.1

Spotlight

TODAY’S SECURITY IS NOT SECURE. It’s Time for a Massive Rethink in Security Tens of billions of dollars are being spent on cyber security annually, yet organizations are still being breached at an alarming rate. $75B+ spent on cyber security technology like firewalls, virtual private networks (VPNs), and antivirus software.1

Related News

SOFTWARE SECURITY

Kaspersky Commended for providing customer-focused, holistic solutions for cybersecurity by Frost & Sullivan

prnewswire | November 09, 2020

In light of its ongoing examination of the worldwide mechanical (OT/ICS) cybersecurity market, Frost and Sullivan perceives Kaspersky with the 2020 Global Company of the Year Award for propelling its vision of making a really predominant modern cybersecurity arrangement. Kaspersky is a pioneer in dissecting market patterns and creating redid arrangements that adequately address key trouble spots inside the mechanical climate. It has made huge steps in the course of recent years by consolidating one of a kind innovations, for example, Machine Learning for Anomaly Detection (MLAD) and Kaspersky Threat Intelligence Feeds in its answers. Because of its combination and OT frameworks, it dispatched the Kaspersky Industrial CyberSecurity arrangement. The arrangement incorporates a wide scope of items and administrations, for example, Kaspersky Industrial CyberSecurity for Nodes to secure modern endpoints and Kaspersky Industrial CyberSecurity for Networks for resource and correspondence disclosure for situational mindfulness, and early mechanical assault and abnormality recognition. Also, it offers security mindfulness and preparing, danger insight, security and weakness appraisals, and oversaw security administrations. Its recognition motors produce various functions, while its connection motor corresponds these nuclear functions into totaled functions that help wipe out superfluous cautions. "Kaspersky Industrial CyberSecurity is uniquely placed to address unmet needs such as protecting legacy operating systems on industrial hosts and offering comprehensive network and asset visibility along with well-rounded attack visibility and protection," said Gautham Gnanajothi Global Research Director. "Its Growth Center, Future Technologies, and Innovation Hub departments are perfectly positioned with best-in-class strategic frameworks to assess, develop, and deliver innovative security offerings to support industrial/ OT end users along their digital transformation journey." Fundamentally, the organization has two committed examination groups; one to help its mechanical arrangements and one for more extensive market-centered cybersecurity megatrends. The Kaspersky Industrial Control Systems - Cyber Emergency Response Team (ICS-CERT) for mechanical arrangements represents considerable authority in working together with controllers and authority norms associations to grow best practices, and examination potential and existing dangers across modern computerization frameworks and the mechanical Internet of Things (IIoT). In the interim, the Global Research and Analysis Team (GReAT) centers around more extensive cybersecurity megatrends and reveals digital surveillance crusades, major malware, ransomware, and underground digital criminal patterns over the world. "The company has established its dominance in a yet uncontested market with emerging technology-based products such as the IoT secure gateway product based on its proprietary operating system KasperskyOS," noted Gnanajothi. "Leveraging superior technical performance, customer service focus, and client relationship, Kaspersky is all set to dominate the industrial (OT/ ICS) cybersecurity market in the long term." "The protection of industrial organizations is one of our key business priorities. While these organizations enhance their OT security, our goal is to provide them with the solutions and expertise required for their level of maturity. We also understand that complex measures are crucial to ensuring any protection is effective, so Kaspersky's portfolio also includes security services and training to improve expertise among IT security teams and OT engineers, as well as employee awareness. This Frost & Sullivan award confirms that we're on the right track, so we're extremely proud to receive such recognition," commented Georgy Shebuldaev, Head of Growth Center, Kaspersky. Every year, Frost and Sullivan presents a Company of the Year grant to the association that exhibits greatness regarding development system and execution in its field. The honor perceives a serious level of advancement with items and advances, and the subsequent administration regarding client worth and market infiltration. Ice and Sullivan Best Practices grants perceive organizations in an assortment of provincial and worldwide business sectors for exhibiting remarkable accomplishment and predominant execution in regions, for example, administration, mechanical advancement, client support, and vital item improvement. Industry investigators analyze market members and measure execution through inside and out meetings, examination, and broad optional exploration to recognize best practices in the business. About Frost & Sullivan For over five decades, Frost & Sullivan has become world-renowned for its role in helping investors, corporate leaders and governments navigate economic changes and identify disruptive technologies, Mega Trends, new business models and companies to action, resulting in a continuous flow of growth opportunities to drive future success. Contact us: Start the discussion. About Kaspersky Kaspersky is a global cybersecurity company founded in 1997. Kaspersky's deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company's comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies and we help 250,000 corporate clients protect what matters most to them.

Read More

DATA SECURITY

eSentire Leverages Guidewire to Quantify and Reduce Cyber Security Risk

eSentire | October 11, 2021

eSentire, recognized globally as the Authority in Managed Detection and Response (MDR), and Guidewire Software, Inc. today announced that eSentire is leveraging Guidewire Cyence’s market-leading, internet-scale cyber data listening and modeling capabilities to support in financially quantifying and reducing cyber risk. Cyber threats pose one of the greatest risks to businesses today, yet it is becoming increasingly harder to identify and protect against those risks and secure insurance coverage,The combination of eSentire and Guidewire Cyence technologies and expertise fill a significant gap to help businesses assess, design, and implement cyber risk solutions and quantify their security ROI and risk reduction. eSentire Chief Technology Officer Dustin Hillard eSentire’s technical cybersecurity expertise in 24/7 threat detection and response to real-time and zero-day threats, combined with Guidewire’s strengths in economic modeling, will enable cybersecurity leaders to tie the efficacy of their security spends to security program return-on-investment. The eSentire Atlas XDR platform, ingesting data from over 1,000 customers across 70 countries worldwide, automatically blocks more than 1 billion threats per year and learns from more than 2 million rapid, human-led investigations per year, yielding a significant proprietary data set that maps internal risk factors to security outcomes. Guidewire’s cyber risk modeling and scoring data for more than 600,000 businesses is now integrated with eSentire’s asset risk scoring, providing security recommendations through eSentire’s Insight Portal: Business Risk Scoring: eSentire customers now have access to Guidewire’s Cyence Risk Rating within the eSentire Insight portal. This business risk rating predicts the probability of a public data breach in the next 12 months. Each business risk rating is contextualized based on industry, size, and revenue band in comparison to its segment peers. Asset Risk Scoring: eSentire customers will benefit from eSentire’s own artificial intelligence risk models learned from targeted attacks defended across its global customer base to determine the probability of an internal security incident originating at the asset level over the next three months. eSentire leverages these insights to make proactive security recommendations on how to reduce each customer organization’s risk. The Royal United Services Institute reported that despite ransomware being the leading claim source for cyber insurers, many organizations are not approved due to open internet access, primarily through open Remote Desktop Protocols (RDP). Through their work together, eSentire and Guidewire have identified and remediated several open RDP scenarios, thereby reducing risk and enabling the organizations to improve their cyber insurance risk profile. In fact, eSentire and Guidewire have developed preferred cybersecurity insurance relationships with Guidewire customers that deliver improved deductibles and expansive coverage for eSentire customers. Hillard added, “eSentire customers now have the opportunity to engage with an expert Cyber Risk Advisor to build a proactive security plan tailored to reducing risk in their environment while considering business- and asset-specific insights,” says eSentire Chief Technology Officer Dustin Hillard. “As a result of our work together, we earn the confidence of the insurance market and our customers get improved cyber risk insurance pricing and policy coverage.” “We are thrilled to join eSentire in making tangible, transparent, and quantifiable cyber risk reduction a reality for businesses worldwide,” says Guidewire Chief Innovation Officer Paul Mang. “We are committed to helping organizations manage the economic volatility associated with cyber threats, both through the efficient use of risk transfer insurance solutions and through proactive risk management actions.” This exciting innovation in cyber risk quantification has been complemented by the introduction of eSentire’s Cyber Risk Advisor program as part of the firm’s overall customer success engagement model. These advisors are security practitioners with consultative and solutions architecture experience, who act as an extension of the customer’s cybersecurity team, demonstrating a clear understanding of each organization’s business objectives and security priorities. The Cyber Risk Advisor supports customers with infrastructure assessments, regular service reviews, and interprets risk scoring metrics to develop a tailored risk reduction roadmap with recommendations that prioritize risk mitigation. These recommendations are based on the insights driven from eSentire’s 24/7 Security Operations Center, Threat Response Unit (TRU), and the new Guidewire Cyence Risk Rating integration. About eSentire eSentire, Inc., the Authority in Managed Detection and Response, protecting the critical data and applications of 1000+ organizations in 70+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business-disrupting events. Combining cutting-edge machine learning XDR technology, 24/7 Threat Hunting, and proven security operations leadership, eSentire mitigates business risk and enables security at scale. The Team eSentire difference means enterprises are protected by the best in the business with a named Cyber Risk Advisor, 24/7 access to SOC Cyber Analytics & Elite Threat Hunters, and industry-leading threat intelligence research from eSentire’s Threat Response Unit (TRU). eSentire provides Managed Risk, Managed Detection and Response and Incident Response Services. For more information, visit www.esentire.com and follow @esentire. About Guidewire Software Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently. We combine digital, core, analytics, and AI to deliver our platform as a cloud service. More than 450 insurers, from new ventures to the largest and most complex in the world, run on Guidewire. As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record, with 1,000+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our marketplace provides hundreds of applications that accelerate integration, localization, and innovation.

Read More

PLATFORM SECURITY

Deloitte Launches Expanded Cloud Security Management Platform

Deloitte | May 10, 2022

Deloitte has enhanced existing features to offer Cloud Security Management (CSM) by Deloitte to assist US executives worried about visibility into the security of their cloud workloads and apps. The platform of services and solutions involves cloud security policy orchestration (CSPO), cyber predictive analytics, attack surface management, and cyber cloud managed services (CCMS), all of which can be used independently or in multi-cloud environments on Google Cloud, Microsoft Azure, and other public clouds. "We integrated newly acquired capabilities with our existing technologies and leading global security services to help our clients secure and enhance their cloud environments more efficiently and effectively. We worked to ensure our platform integrates and operates with the major cloud providers' security capabilities so that our clients can more easily scale their cloud security programs and apply security throughout the systems development lifecycle – even when non-standard security requirements are involved. Building upon the strength of the CSM by Deloitte platform, we plan to expand it over time as client demands change and the technology landscape evolves." Vikram Kunchala, Deloitte Risk & Financial Advisory Cyber Cloud leader and principal, Deloitte & Touche LLP Deborah Golden, Deloitte Risk & Financial Advisory Cyber and Strategic Risk leader and principal, Deloitte & Touche LLP said that "While many are eager to accelerate cloud adoption in a secure, resilient and agile manner, that process is not always easy or simple – particularly when digital transformations occur at various stages, multiple cloud environments are involved, and regulatory compliance requires a variety of shared infrastructure situations, inclusive of third-party requirements. Whether organizations want to leverage our advanced technologies or large practice of highly skilled cyber specialists – or both – CSM by Deloitte acts as a potential change agent for organizations that want to operate confidently and securely in the cloud environment even as that threat landscape evolves."

Read More