DATA SECURITY

Cybersecurity Startup BitTrap Develops Groundbreaking Detection Technology to Address Surge in Cyberattacks

BitTrap | October 05, 2021

Startup company BitTrap has announced a blockchain-based cybersecurity solution that leverages attackers' motivations to provide singular detection capabilities. This approach differs from cybersecurity paradigms that focus on trying to keep attackers from breaking in. Instead, it assumes some have already made their way inside a network, undetected, and is designed to identify them and reduce hacker dwell time in the compromised system.

The system works by deploying a vast network of wallets in every endpoint or cloud instance. Each wallet contains a risk-adjusted bounty of cryptocurrency assets calibrated, based on research from the BitTrap Attacker Behavioral Labs, to ensure it will capture an attacker's attention. Collecting the bounty triggers an incident-response operation that alerts the organization of the breach, effectively causing the hacker to reveal their presence. The vulnerability can be quickly assessed and patched while avoiding ransomware and data exfiltration altogether.

BitTrap began operations in 2020 after cyberattacks multiplied during the global pandemic. The company's founders, who combine decades of industry experience in cybersecurity and expertise in attacker behavior, developed the groundbreaking technology to help companies actually benefit from cyberattacks. "It is very important to capitalize on security incidents, using each opportunity to learn and prioritize efforts," said BitTrap CTO Ariel Futoransky. "We need to understand our adversaries' main motivation and use it to overcome our challenges and reduce the impact of attacks. With our unique approach, we can tackle both issues at the same time. We go a long way beyond intrusion detection or deception."

The company is particularly proud of the new solution. Through the company's Attacker Behavioral Labs, Altszul said, "We intend to keep investing and developing the most sophisticated capacity in the industry to understand attacker behavior. After our initial success, we are getting ready to raise a new round of financing to fuel our expansion in the market.

BitTrap CEO Jonatan Altszul

About BitTrap
BitTrap is a cybersecurity solution company with a groundbreaking crypto approach, changing how companies face and resolve attacks while saving money along the way. BitTrap triggers immediate alarms using risk-adjusted economic incentives to reveal vulnerabilities without compromising performance. We go far beyond deception technology.

Spotlight

Noname Security Posture Management helps you maintain an accurate inventory of all your APIs, including legacy and shadow APIs. We can scale to hundreds or thousands of pieces of infrastructure, monitoring load balancers, APIs gateways, and web application firewalls to help you locate and catalog every type of API, including HTTP, RESTful, GraphQL, SOAP, XML-RPC, JSON-RPC, and gRPC.

Spotlight

Noname Security Posture Management helps you maintain an accurate inventory of all your APIs, including legacy and shadow APIs. We can scale to hundreds or thousands of pieces of infrastructure, monitoring load balancers, APIs gateways, and web application firewalls to help you locate and catalog every type of API, including HTTP, RESTful, GraphQL, SOAP, XML-RPC, JSON-RPC, and gRPC.

Related News

ENTERPRISE SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

SafeGuard Cyber Introduces Illuminate Partner Program for MSSPs

SafeGuard Cyber | February 09, 2023

SafeGuard Cyber, the complete integrated cloud communications security and compliance platform, recently introduced its Illuminate Partner Program for managed security services providers (MSSPs). The new program will offer partners industry-leading security and compliance technologies, training, tiered MSSP pricing, and support to safeguard clients from cybersecurity threats and compliance concerns throughout the contemporary cloud workplace. In addition, safeGuard Cyber welcomes BlueAlly and XO Cyber as program partners and appoints John McCabe as vice president of Worldwide Channel Sales to drive strategy and execution. The Illuminate Partner Program assists value-added resellers (VARs) and managed security service providers (MSSPs) in enabling security and compliance for their clients' business communications. SafeGuard Cyber mitigates threats across email, mobile and web messaging applications, collaboration apps, and social media using a mix of unified visibility, contextual analysis, and multi-channel investigations and detections. John McCabe, former Vice President of global partner sales at ThirdPartyTrust, has been appointed to oversee the Illuminate Partner Program at SafeGuard Cyber. McCabe, who recently joined as vice president of WW Channel Sales at SafeGuard Cyber, was essential in building a 100% channel sales strategy at ThirdPartyTrust and was a significant part of the management team engaged in the company's 2022 acquisition by BitSight. Vice President of WW Channel Sales, SafeGuard Cyber, John McCabe, said, “Partners of the program can provide proof of value to customers in as little as two weeks with a Business Communication Risk Report that relies on SafeGuard Cyber’s easy to deploy platform to connect with over 30 cloud applications.” He added, “The Illuminate Partner Program is designed to drive profitability and predictability by prioritizing the channel for resale, services, and support to address Business Communication Compromise.” (Source – Businesswire) About SafeGuard Cyber SafeGuard Cyber is the most complete integrated cloud communications security platform for addressing cyber threats and compliance issues across the contemporary cloud workplace. It mitigates risks in email, collaboration apps, mobile and web messaging apps, and social media apps across M365, Teams, LinkedIn, Slack, WhatsApp, Telegram, and additional messaging channels through a combination of contextual analysis, unified visibility, and multi-channel investigations and detections. Powered by Natural Language Understanding and unique social engineering detection technologies, the platform accelerates the identification of social engineering and language-based attacks in more than 50 languages. In addition, the @API-first, agentless deployment of the platform offers corporate security regardless of network or device.

Read More

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

GoSecure Releases Titan Identity for Enhanced Identity and Access System Security

GoSecure | February 16, 2023

On February 15, 2023, GoSecure, a leading Managed Extended Detection and Response (MXDR) and proficient advisory services provider, announced the release of Titan Identity, a solution combining technology with managed services to offer an affordable and immediately deployable solution that can help organizations to measurably enhance response times to credential theft. GoSecure Titan Identity is a detection service specifically designed to significantly minimize the time required to detect and respond to assaults aimed at enterprise identity systems such as Microsoft Active Directory. By employing real-time analysis of Active Directory and other event log data, the Titan Identity's alert technology with low false positives allows Incident Response teams to effectively utilize existing workflow systems and react promptly to commonplace but hazardous attacks that occur after the initial foothold, thereby ensuring the safeguarding of crucial business assets. The Key benefits of this service include the following: Significantly reduced response and detection times by enabling the Incident Response team to have continuous and ongoing visibility into identity attacks across enterprise hosts, virtual machines, servers, containers, desktops, and laptops. Improved return on previous (SOAR)/ (SIEM) investments by leveraging the SIEM infrastructure, facilitating new SOAR playbooks with automated actions, and permitting the use of out-of-SIEM logs that surpass indexing and storage budget. Increased productivity for analysts by significantly minimizing the occurrence of false positives, eliminating the need for an additional user interface, and providing alerts with enriched messages. Enabled verifiable accuracy through automated and continuous testing and quantification of performance. Reduced deployment and change costs by avoiding network probes and sensors. Improved internal team's capabilities by granting access to a team of data scientists for expanding identity attack detection capabilities. Titan Identity is different from other anomaly or signature-based detection systems and is made up of over 30 distinct detectors and finely tuned machine learning models that are continuously evaluated to significantly minimize false positives, delivering high confidence alerts in mere seconds. The design facilitates the replacement of manual workflows with automation, capable of functioning with remarkable assurance. This flexible and adaptable service is complemented by the access of data science experts who ensure the accuracy and measurability of results via ongoing data flow monitoring, detector development, and detector performance tuning services. About GoSecure Founded in 2002, GoSecure is a leading cybersecurity solutions provider and offers cutting-edge managed security solutions and expert advisory services. Its GoSecure Titan® managed security solutions provide comprehensive, multi-vector protection to effectively counteract the latest cyber threats and offer a full suite of services that can extend the capabilities of clients' in-house teams. For more than a decade, it has been assisting clients in better understanding their security gaps, mitigating organizational risk, and improving their security posture through its advisory services, delivered by one of the industry's most reliable and skilled teams.

Read More

ENTERPRISE SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

SteelCloud and Telos Corporation Collaborate to Enhance NIST RMF Compliance

Telos Corporation | January 09, 2023

SteelCloud LLC, a leading CIS and STIG compliance automation software developer and Telos Corporation, a renowned provider of cyber, enterprise, and cloud security solutions to the world's most security-conscious organizations, recently announced entering into a partnership to assist customers in reducing the complexity of NIST Risk Management Framework (RMF) compliance. Customers gain access to all seven RMF phases via a unified, automated solution. SteelCloud's ConfigOS capabilities take care of the identify/ categorize, select, and implement components of RMF for technical assets. ConfigOS examines an asset, determining whether Security Technical Implementation Guides (STIG) apply, scanning against the STIG standards, identifying compliance indicators, and automating the remediation of findings. Meanwhile, Xacta incorporates and uses this information during the RMF's assessment and authorization processes, as well as when the monitor step is initiated once authorization to operate (ATO) is obtained. Working together, ConfigOS and Xacta drive decisions to address identification and selection problems while reporting important indicator metrics required to achieve and sustain ATO. STIG and vulnerability data from ConfigOS are integrated into Xacta and mapped to appropriate requirements as part of Assessment and Authorization (A&A), providing customers with a streamlined approach to gaining necessary permissions. Xacta's workflow automation streamlines the whole NIST RMF workflow, managing validation, analysis, documentation, and accreditation processes from start to end. About Telos Corporation Telos Corporation provides solutions for continuous security assurance of personnel, systems, and information to the world's most security-conscious enterprises, empowering and protecting them. The company offers enterprise security solutions for identity and access management, organizational messaging, secure mobility, and network management and defense. Telos Corporation serves commercial organizations, regulated sectors, and government customers all around the world. About SteelCloud SteelCloud is a company that creates STIG and CIS compliance software for government and business clients. The company's product reduces the complexity, effort, and cost of implementing federal security standards by automating policy and security repair. SteelCloud has provided enterprise-wide security policy-compliant solutions, easing setup, and ongoing security and compliance support. SteelCloud goods are simple to obtain through our GSA Schedule 70 contract.

Read More