Extends live map to include IoT Devices, further protecting core networks from lateral movement of hackers.
February 26, 2018
by Canadian Packaging staff
ELLICOTT CITY, Md.—Blackpoint Cyber has announced availability of its Internet of Things (IoT) module for SNAP-Defense which provided lateral spread protection for not only core enterprise networks but also IoT applications such as Smart Building Systems, Industrial Control Systems, and Operations Technology including factory and logistics control systems.
SNAP‘s IoT security software allows users to visualize and monitor every device that makes up a company’s infrastructure.
This includes, but is not limited to: building automation, alarm systems, security cameras, lighting controls, irrigation controls, access controls, and more.
The IoT is an exciting technology, allowing companies to see, measure, and control almost every action that takes place in their extended enterprises. Companies are connecting millions of devices to networks each year; healthcare companies are connecting the latest diagnostic sensors and buying diagnostic centers and physicians practices—many of which have immature cyber security practices. Smart building and smart city initiatives mean that thousands of sensors are becoming connected, and many of these applications have paths to core enterprise networks.
SNAP already protects the core networks, using its patented Live Network Map to identify the threat behavior used in every recent major network breach and insider attack. SNAP alerts on two types of behavior in real time: network enumeration (the process of discovering a network layout) and lateral movement across the network, particularly with the use of privileged credentials. SNAP‘s new IoT software identifies new classes of devices and monitoring traffic into the core network; examples include RDP (Remote Desktop Protocol) calls by HVAC (Heating, ventilation, and air conditioning) and physical access vendors. In doing so, SNAP bridges the gap from the cyber world to the physical.
For example, SNAP can identify when a field tech, in the daily course of business, routes a cable around a network firewall thereby exposing the network assets to serious harm.
“Companies are employing a growing number of unmanaged devices that are riddled with vulnerabilities from the start,” says Blackpoint chief executive officer Jon Murchison.
“Traditional endpoint agent threat detection does not apply to IoT style devices in most cases. Combine that with remote privileged access by product vendors who aren’t necessarily focused on cyber security, and you have a recipe for a serious cyber event impacting IP, production, and building operations alike. This epitomizes the security challenge of the IoT – backward-looking log analysis will never catch threats in time,” he continues.
SNAP‘s Live Network Map enables you to accurately know what is currently active in your network. SNAP then focuses on the behavior that matters from both external and insider threats: network enumeration, lateral movement, and system administration tradecraft.
Finally, SNAP delivers the threats to your desktop with all relevant information on the suspected endpoint or credential. With full information, it’s a one-minute decision process and if warranted, a one-click detainment of the threat.
SNAP also provides an advantage in speed-of-defense, deploying automatically in a few hours – making it relevant in incident response – making sure the “doors are shut” in that critical moment before forensic analysis has even started.
Blackpoint Cyber is a cyber security company delivering Next Generation Hunt and Response Software while reducing the security stack and spend. Founded by former DoD (US Department of Defense) cyber operations experts, it’s our passion and mission to provide the fastest, easiest-to-use, and most cost-effective cyber security products to IT and Security professionals of all levels of experience. Backed by Telcom Ventures and Orbis Operations, Blackpoint has built substantial IP including a patented approach to their live network map and immediate lateral movement detection. Company information available at https://www.blackpointcyber.com/.