Guardicore Labs Launches Botnet Encyclopedia to Aid in Global Fight Against Cybercrime

/in , /by

Open Knowledge Base of Persistent Botnet Threats Helps Security Teams Turn Intelligence Into Action; Unknown Decentralized Worm Discovered Upon Launch

Boston, Mass. and Tel Aviv, Israel – June 30, 2020 – Guardicore, a leader in data center and cloud security, today announced that its global research division, Guardicore Labs, has launched the Botnet Encyclopedia. Guardicore’s Botnet Encyclopedia provides a continuously updated universal knowledge base of past and present botnet campaigns researched by the Labs team – many of which previously unknown to the cybersecurity community – showcasing the greatest threats to enterprise security in a single, open location.

The Botnet Encyclopedia is powered by the Guardicore Global Sensors Network (GGSN), a network of detection sensors deployed in data centers and cloud environments around the world, capable of capturing and recording complete attack flows to the highest resolution. The Botnet Encyclopedia is designed to allow security teams, IT teams, researchers and the cybersecurity community at large to better understand and protect themselves from persistent and advanced threats, identified as campaigns.

FritzFrog, a mass-scale attack campaign active since January 2020 in which a sophisticated Golang binary is deployed on brute-forced SSH servers, is one of the first Botnet Encyclopedia campaign entries. Research identifies FritzFrog as a highly concerning peer-to-peer botnet with no centralized infrastructure, rather one whose control is distributed among its nodes. Its discovery as a decentralized worm makes it particularly unusual and dangerous. In addition, the research team identified racist terminology hard coded in the malware.

“FritzFrog is the type of threat that must be recognized as a campaign due to its operational longevity and danger it presents, particularly as a previously unknown threat,” said Ophir Harpaz, security researcher, Guardicore. “It’s our mission to bring these campaigns to light on a rolling basis and provide a level of context unavailable in any other public knowledge base in order to equip the cybersecurity community with the required information to defend itself and mitigate risk. Our research and analysis of FritzFrog is ongoing. We’ve been unearthing new findings into its enterprise impact and attacker attribution on a daily basis. We encourage all contributions, questions and suggestions from the community to enhance our findings into FritzFrog and the entire Botnet Encyclopedia.”

Botnets can be found within the encyclopedia using free-text search, allowing users to search all entries using any type of indicator of compromise (IOC) – IP addresses, domains, file names, names of services and scheduled tasks, and more. Extending beyond common cyber threat intelligence feeds and services, the Botnet Encyclopedia contextualizes advanced threats with tiered analysis including:

Campaign information including name, variants, time frame of identification within the GGSN and links to external resources detailing the campaign.
IOCs associated with the campaign including IP addresses from which attacks originate, IPs and domains holding outgoing attack connections, and files dropped or created as part of the attack.
Full attack flow as it was captured and saved by the GGSN, accompanied by detailed analysis from Guardicore Labs’ global team consisting of hackers, researchers and industry experts.

“Winning the war against cybercrime cannot be achieved by any one individual or organization, it must be a collaborative global effort,” said Harpaz. “Threat intelligence and knowledge sharing has long been the cornerstone of such efforts. With the Botnet Encyclopedia, we are enhancing the ability for teams and organizations to turn intelligence into action with publicly accessible, deep context into the most dangerous campaigns targeting enterprises around the world; past, present and future.”

To learn more about the Botnet Encyclopedia, please visit: https://www.guardicore.com/botnet-encyclopedia/

About Guardicore
Guardicore is a data center and cloud security company that protects your organization’s core assets using flexible, quickly deployed, and easy to understand micro-segmentation controls. Our solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. For more information, visit www.guardicore.com.

Cogna Group Migrates Data Center in Record Time With Guardicore

/in , /by

Guardicore technology improves group security both in on-premise and cloud environments; Helps compliance with the Brazilian General Personal Data Protection Act

Boston, Mass. and Tel Aviv, Israel – June 10, 2020 – Guardicore, a leader in data center and cloud security, today announced that Cogna, a leading Brazilian educational group, has chosen the Guardicore Centra Security Platform as the tool to help perform a data center migration for one of its companies. Committed to keeping safe a tremendous amount of information related to students, proprietary materials, teaching systems, services, and application microservices, the Cogna IT team managed to successfully complete the migration in just two weeks.

Alex Amorim, the information security manager at Cogna Group, has embraced the Zero Trust concept as the most efficient way to protect the group’s IT infrastructure, applications, data, and third-party information it holds. To achieve this goal, he needed the detailed workflow segmentation that Guardicore provides, defending Cogna against external threats and from lateral threat movements inside the company’s technology environment.

Growth Challenges and Achieving Compliance
In December 2019, Cogna Group completed the acquisition of Somos, a company devoted to primary and secondary education. The contract with the datacenter provider hosting Somos would expire in one month, creating a short time span for Cogna to integrate all of the Somos data and infrastructure to the Group’s environment, which already hosted three other Cogna Group companies.

As the Guardicore Centra Security Platform had already been implemented to protect Cogna’s companies, the solution was to install the platform in the environment in which the Somos infrastructure was located before migration. Successfully carried out in two-weeks, the migration allowed for Cogna Group’s on-premise equipment to be gathered together in just one location and for the Group’s private cloud to be unified.

To mitigate risk and preserve the organization’s reputation, Cogna is committed to creating a security framework based on the principles of confidentiality, integrity and availability. These principles extend to compliance with the Brazilian General Personal Data Protection Act, ensuring the Cogna Group is ready for its full implementation when it comes into effect. The Cogna Group has been preparing to deploy LGPD since 2018 and see Guardicore’s micro-segmentation capabilities as a great ally in the protection of company data.

Protecting Cloud Managed IT Services
To ensure security against all possible threats, the Cogna Group’s plan is to extend the Guardicore Centra Security Platform to public cloud services. The Group uses multiple public clouds, in addition to its private cloud. As the responsibility for management of cloud IT solutions shifts from the company that provides colocation services to a new service provider, the Group will take the opportunity to increase its security level.

Alex Amorim counts on the Guardicore technology to achieve this goal: “Nano-segmentation is about monitoring access in order to allow only authorized users to access each server and each communication channel between machines. This is the kind of control we must have today.”

“At Guardicore, we strive to make security effective in the easiest and quickest way. Our ability to show how all systems interact allows our customers to make faster and more accurate decisions,” said Fernando Ceolin, Director Sales Engineering, Brazil – LATAM, Guardicore. “In addition, with our ability to control interactions no matter where the workloads are, they can safely make any move they need. These features have proven to be instrumental for customers all over the world who want to develop new zero trust security projects. We are proud and honored to be chosen as Cogna’s preferred security partner.”

To watch the video on how Alex Amorim used Guardicore Centra to rapidly enforce micro-segementation policies on multiple environments, please visit: https://www.guardicore.com/resources/cogna-group-leader-in-education-guardicore-centra-customer-spotlight/

About Cogna
Over 50 years of tradition and pioneering spirit make Brazil’s Cogna Educação a leading global educational organization. Operating under four brands – Kroton, Platos, Saber and Vasta Educação / Somos Educação – the Group provides educational solutions and services for both the B2C and B2B markets. Guided by an innovative educational strategy, Cogna aims at transforming people’s lives through quality education and serves more than 2.2 million students from all over Brazil, from Basic to Higher Education, with over 900,000 students taught directly and 1.3 million students through partner schools and educational institutions. Cogna’s social activities and programs benefit more than 3.07 million people and generate a socio-economic impact of R$ 12.5 billion, helping to transform the communities where it operates.

About Guardicore
Guardicore is a data center and cloud security company that protects your organization’s core assets using flexible, quickly deployed, and easy to understand micro-segmentation controls. Our solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. For
more information, visit www.guardicore.com.

New Version of Guardicore Infection Monkey Uses MITRE ATT&CK Techniques to Test Network Preparedness

/in , /by

Top-rated Open Source Tool Helps Security Teams Assess Readiness to Withstand Real Advanced Persistent Threats

Boston, Mass. and Tel Aviv, IsraelApril 28, 2020Guardicore, a leader in internal data center and cloud security, today unveiled new capabilities for its open source Infection Monkey breach and attack simulation tool, used by thousands to review and analyze how their environments may be vulnerable to lateral movement and attacks. The latest version of Guardicore Infection Monkey now maps its actions to the MITRE ATT&CK knowledge base, providing a new report with the utilized techniques and recommended mitigations, to help security and network infrastructure teams simulate advanced persistent threat (APT) attacks and mitigate real attack paths intelligently.

“The MITRE ATT&CK knowledge base is a globally-recognized, comprehensive matrix of tactics and techniques observed in millions of actual attacks, used by enterprise network defenders to better classify attacks and assess risks,” said Pavel Gurvich, Co-founder and CEO, Guardicore. “By leveraging the universally accepted framework, Guardicore Infection Monkey is now equipped to help security teams quickly and safely test network defenses and how they map to specific advanced persistent threats. With clear and easy to understand reporting that identifies weak policies and provides prescriptive instructions to remedy them, Infection Monkey automates assessment of security posture and enables system tuning for better defense.”

Infection Monkey with MITRE ATT&CK Reporting
Increasingly, cybersecurity experts and enterprise DevSecOps teams use the publicly available, MITRE-developed ATT&CK framework as a basis for network security tests and assessments. Already deployed by Guardicore Infection Monkey users in ATT&CK simulations, the latest version is now equipped to test specific ATT&CK techniques in order to provide more insight about how those techniques were used and to offer prescriptive recommendations on how to better protect the network. The end result is a platform where ATT&CK tests can be readily configured, automatically launched and results aggregated into a single, easy to read and digest report.

Guardicore Infection Monkey enables cybersecurity and infrastructure architects to automate testing of network defenses by attempting to communicate with machines residing in different segments of the enterprise network, demonstrating policy violations, and generating test results with actionable recommendations for remediation. With prescriptive reporting that can be easily implemented without any additional staff or education, Guardicore Infection Monkey offers security leaders the ability to illustrate where defenses fall short and the measures necessary to rectify them.

 

Availability & Contributions
Developed by Guardicore Labs, Guardicore Infection Monkey is an open source breach and attack simulation tool for securely and automatically testing the resiliency of private and public cloud environments. Developed under the GPLv3 license, Guardicore Infection Monkey source code is currently available from the GitHub repository. Added capabilities for ATT&CK features are available now for immediate download. Guardicore Infection Monkey is available for bare metal Linux and Windows servers, AWS, Azure, VMWare and Docker environments, and private clouds. For questions, suggestions and guidance join the Infection Monkey community.

About Guardicore
Guardicore is a data center and cloud security company that protects your organization’s core assets using flexible, quickly deployed, and easy to understand micro-segmentation controls. Our solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. For more information, visit www.guardicore.com.

Guardicore Recognized with 5-Star Rating in 2020 CRN® Partner Program Guide

/in , /by

Cloud and Data Center Security Innovator Receives Honor Third Year in a Row

Boston, Mass. and Tel Aviv, Israel – March 30, 2020Guardicore, a leader in internal data center and cloud security, has received a 5-Star Rating from CRN®, a brand of The Channel Company, in its 2020 Partner Program Guide. The 5-Star rating from CRN denotes Guardicore among elite technology suppliers in the IT channel, providing maximum value and support for solution providers. Guardicore was also recently recognized by CRN as one of the 100 Coolest Cloud Companies for 2020, acknowledging the executive leadership team and the innovative Guardicore Centra Security Platform.

The Channel Company’s research team analyzed each vendor’s partner program to determine the 2020 5-Star ratings. Each was scored based on several factors, including investments in program offerings, partner profitability, partner training, education and support, marketing programs and resources, sales support, and communication. John Ryan Head of Channels for North America at Guardicore commented, “We selectively partner with top notch organizations, who share our mission to provide technical expertise, streamlining our efforts to provide the best results for our partners. The partner program has been designed to focus on what enriches our partners the most; we enable them technically, we feed them qualified opportunities and we consistently support all of their needs.”

The award-winning Guardicore Partner Program was created to meet the unique needs of different partner types, including resellers, consultants, systems integrators, and managed security service providers interested in deploying the Guardicore Centra Security Platform. The program delivers significant benefits to its partners relative to cloud services. Guardicore provides a SaaS-based (cloud) delivery model that enables a cost-effective and highly scalable deployment model. Partners leverage this model to deliver an infrastructure-agnostic approach to security that extends across legacy, bare metal, private virtualized, public cloud and containers. Additionally, partners are able to leverage Guardicore’s cloud capabilities to deliver a wide range of cloud-based managed security services and cloud-centric professional services.
Guardicore’s Centra Security Platform is a comprehensive data center and cloud security solution that delivers the simplest and most intuitive way to apply micro-segmentation controls to reduce attack surface and detect and control breaches within east-west traffic. It provides deep visibility into application dependencies and flows and enforcement of network and individual process level policies to isolate and segment critical applications and infrastructure. Guardicore Centra’s AI-powered segmentation makes asset classification even easier and reduces the time and effort needed to apply a segmentation policy to new or existing applications.

About The Channel Company
The Channel Company enables breakthrough IT channel performance with our dominant media, engaging events, expert consulting and education and innovative marketing services and platforms. As the channel catalyst, we connect and empower technology suppliers, solution providers and end users. Backed by more than 30 years of unequalled channel experience, we draw from our deep knowledge to envision innovative new solutions for ever-evolving challenges in the technology marketplace. www.thechannelco.com

About Guardicore
Guardicore is a data center and cloud security company that protects your organization’s core assets using flexible, quickly deployed, and easy to understand micro-segmentation controls. Our solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. For more information, visit www.guardicore.com.

Guardicore Expands International Presence

/in , /by

Leader in Data Center and Cloud Security Extends Global Reach with Operations in India; Cybersecurity Industry Veteran Pratik Sharma to Lead Guardicore India

Tel Aviv, Israel – March 9, 2020Guardicore, a leader in internal data center and cloud security, today announced the expansion of global operations, with the establishment of Guardicore Pvt. Ltd. in Mumbai, India. Guardicore India will be headed by Regional Director Pratik Raj Sharma, a cybersecurity industry veteran and former Regional Sales Director, Check Point, West India. 

 

“With a growing global customer base which includes some of the largest companies in North America, Europe and Latin America, and a significant portion of top financial institutions around the world, including Banco Santander, we see India as a major focus market,”said Dror Salee, Co-Founder and Vice President, Asia Pacific at Guardicore. “We have evidence there is a great need for easy to use, flexible and scalable micro-segmentation solutions in data centers across India’s large and fast-growing economy. We are already engaged with some of India’s largest companies and will be hiring local pre-sales, customer success and professional services engineers to support rapid growth in the country.”

 

Establishing a market presence in India, Guardicore further expands its global footprint to address increased market demand for its comprehensive data center and cloud security solution  Guardicore Centra, delivering the simplest way to apply micro-segmentation controls that reduce attack surface and detect and control breaches within complex internal corporate networks. Guardicore will support this expanded international presence with a dedicated team based in Mumbai, addressing customer demand through a high-value global channel partner program aimed at delivering award-winning cloud security to customers throughout Asia Pacific.

 

Pratik Sharma Heads up Guardicore India Pvt. Ltd.

Based in Mumbai, Guardicore India Pvt. Ltd. Regional Director Pratik Raj Sharma will lead Guardicore India, providing strategic direction, and leading the development and expansion of new business opportunities. Pratik is a security industry veteran with more than 18 years of experience. Pratik had been with Check Point Software for over 11 years, holding positions of Security Consultant, System Engineering Director India and SAARC, and most recently Regional Sales Director for Check Point, West India. Pratik has a proven record of facilitating long term business relationships with both customers and industry luminaries.  His market and technology experience and expertise are assets that will complement and enhance Guardicore’s ability to meet the data center and cloud security needs of large companies in India’s growing economy. 


About Guardicore

Guardicore is a data center and cloud security company that protects your organization’s core assets using flexible, quickly deployed, and easy to understand micro-segmentation controls. Our solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. For more information, visit www.guardicore.com.

Guardicore Earns Multiple Industry Awards at RSA Demonstrating Continued Innovation in Cloud Security

/in , /by

Cyber Defense Magazine, Info Security Products Guide and CRN Award Guardicore with Top Honors

Boston, Mass. and Tel Aviv, Israel – February 24, 2020 – Guardicore, a leader in internal data center and cloud security, received multiple awards for innovation in cybersecurity from industry media at the 2020 RSA Conference. Cyber Defense Magazine named Guardicore the Market Leader in Cloud Security. The 16th Annual 2020 Info Security PG’s Global Excellence Awards also named Guardicore as the Gold award winner for the Most Innovative Security Software of the Year and the Bronze award for the Most Innovative Cloud Security. These awards follow Guardicore’s recent recognition by CRN® as one of the 100 Coolest Cloud Companies for 2020, acknowledging the executive leadership team and the innovative Guardicore Centra Security Platform, and Guardicore’s subsequent recognition by Forbes as the Best Cloud Computing Company to work for in 2020 based on an analysis of CRN and Glassdoor rankings. 

“Modern businesses want to utilize the benefits of cloud services, and understandably are concerned about how to maintain security for their IT assets in native cloud, hybrid cloud and multi-cloud environments. Our distributed, software-defined segmentation solution is the simplest way to secure these assets and makes it possible to oversee the security of all data center and cloud workloads. This recognition by Cyber Defense Magazine, Info Security Products Guide, and CRN validates our team’s dedication to keeping up with the pace of IT innovation and success with our channel partners by providing security simply wherever the enterprise  needs it,” stated Pavel Gurvich, CEO and co-founder at Guardicore.

Guardicore Centra is a comprehensive data center and cloud security solution that delivers the simplest and most intuitive way to apply micro-segmentation controls to reduce attack surface and detect and control breaches within east-west traffic. It provides deep visibility into application dependencies and flows and enforcement of network and individual process level policies to isolate and segment critical applications and infrastructure. Guardicore Centra’s AI-powered segmentation makes asset classification even easier and reduces the time and effort needed to apply a segmentation policy to new or existing applications.

About Cyber Defense InfoSec Awards

This is Cyber Defense Magazine’s eighth year of honoring InfoSec innovators from around the globe. Our submission requirements are for any startup, early-stage, later stage or public companies in the INFORMATION SECURITY (INFOSEC) space who believe they have a unique and compelling value proposition for their product or service.  In this program, we are particularly interested in highlighting cybersecurity companies who have a presence outside of the USA and/or a more global focus. Learn more at www.cyberdefenseawards.com

About Info Security PG’s Global Excellence Awards

The Channel Company enables breakthrough IT channel performance with our dominant media, engaging events, expert consulting and education and innovative marketing services and platforms. As the channel catalyst, we connect and empower technology suppliers, solution providers and end users. Backed by more than 30 years of unequalled channel experience, we draw from our deep knowledge to envision innovative new solutions for ever-evolving challenges in the technology marketplace. www.thechannelco.com

About Guardicore

Guardicore is a data center and cloud security company that protects your organization’s core assets using flexible, quickly deployed, and easy to understand micro-segmentation controls. Our solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. For more information, visit www.guardicore.com.

Guardicore Expands Its Centra Security Platform to Protect Cloud Native Applications and Simplify Segmentation Policy

/in , /by

Guardicore Centra Version 5 Introduces Expanded Coverage for Cloud-Native Applications and PaaS and AI-Powered Segmentation

Boston, Mass. and Tel Aviv, Israel – February 21, 2020 – Guardicore, a leader in internal data center and cloud security, today announced several new capabilities in its Guardicore Centra Security Platform designed to help security architects visualize, segment, and protect cloud-native applications while further simplifying the process for reducing risk to mission-critical business applications through segmentation. 

Building on its broad security coverage across hybrid data center environments, Guardicore protects cloud-native applications, including serverless computing and Platform as a Service (PaaS). This enables security teams to visualize and control access to cloud-native applications from the same Guardicore Centra Security Platform where they secure applications running on bare metal systems, virtual servers, Infrastructure as a Service (IaaS) and containers. This provides security professionals with a single platform, giving them a single view of all applications and flows, and a single, consistent dashboard to create, update and enforce policies, dramatically simplifying security policy management in hybrid data center and cloud environments.

“Cloud-native application development is rapidly becoming the new standard for quickly building and scaling new business applications and optimizing existing ones,” said Pavel Gurvich, Co-founder and CEO, Guardicore. “Until now, providing adequate protection of PaaS services such as AWS S3, Azure SQL, and GCP Cloud Run has required standalone security tools to properly visualize access to these services and apply access control policies, resulting in inefficient security policy management across hybrid environments. Guardicore has simplified this by integrating cloud-native support into the Guardicore Centra Security Platform. This allows security to keep up with the pace of DevOps while maintaining the appropriate levels of security to protect sensitive data and applications.”

Security for Cloud-Native Applications

The Guardicore Centra Security Platform secures the production and operational elements of cloud-native applications by enabling IT security teams to visualize access to PaaS services, by  user, system or cloud service, providing a visual map of all interactions between those services, including application flows. Guardicore segmentation policies then control access to cloud resources to ensure only sanctioned users and systems are allowed, blocking any unauthorized access, and reducing the attack surface of cloud-native applications. 

Guardicore Centra uses multiple methods for data collection and policy enforcement for cloud-native applications, including cloud-native access control policies, cloud APIs, Guardicore agents, and utilizing code instrumentation mechanisms for serverless functions. This provides the ultimate flexibility in how to apply least privilege and reduce the attack surface of cloud-native services.

AI-Powered Segmentation

Whether deployed in existing on-premises data centers or in the cloud, segmenting applications often requires IT to manually classify assets and write segmentation rules to achieve the proper level of security. Guardicore already provides an intuitive, integrated workflow to minimize manual effort, but by leveraging AI, Guardicore Centra version 5 further accelerates and simplifies segmentation and ongoing policy management.  Guardicore Centra’s AI-powered segmentation makes asset classification even easier and reduces the time and effort needed to apply a segmentation policy to new or existing applications.

Based on intelligence collected from tens of thousands of applications and millions of flows from Guardicore customers, and combined with AI-based algorithms, Guardicore Centra provides asset classification and policy assistance in three main areas:

  1. Automatic prioritization recommendations for application segmentation. Guardicore Centra automatically provides recommendations on which applications to segment first, based on Guardicore’s continuous analysis of the applications that represent the greatest risk reduction opportunities.
  2. Scoping and classifying applications.  To help reduce or even eliminate manual processes for labeling assets and components of a particular application, Guardicore Centra automatically discovers, scopes and provides recommendations for how to label an application for easy and seamless classification.
  3. Automatic segmentation policy recommendations. Guardicore Centra provides segmentation rule recommendations based on known application behavior and a pre-defined set of policy templates for common applications. For example, for Splunk users, Guardicore Centra will provide a pre-defined set of rules for securing this application with minimal to no human intervention. This provides a quick and easy way to reduce the risk without having to write new rules or rewrite rules for another application. 

Guardicore will preview new features at the RSA Conference in San Francisco, CA, February 24, 2020 – February 27 in Guardicore Booth #4319.

About Guardicore Centra

Guardicore Centra is a comprehensive data center and cloud security solution that delivers the simplest way to apply micro-segmentation controls to reduce the attack surface and detect and control breaches within east-west traffic. It provides deep visibility into application dependencies and enforces network and process-level policies to protect critical applications, in any environment.

About Guardicore

Guardicore is a data center and cloud security company that protects your organization’s core assets using flexible, quickly deployed, and easy to understand micro-segmentation controls. Our solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. For more information, visit www.guardicore.com.

Guardicore Threat Intelligence Firewall Hardens Security Policies in Modern Data Centers

/in , /by

Integrated with Guardicore Centra, Smart Firewall Continually Updated with Global and Local Source Data

Boston, Mass. and Tel Aviv, Israel – February 20, 2020 – Guardicore, a leader in internal data center and cloud security, today announced the availability of its Guardicore Threat Intelligence Firewall feature, integrated into its Guardicore Centra Security Platform. The Threat Intelligence Firewall goes beyond traditional firewall measures to help harden security profiles in complex cloud environments. Managed through Guardicore Centra’s segmentation rules dashboard, it identifies and blocks incoming and outgoing connections to known malicious IPs, limiting the network attack surface and eliminating attacker activity before it reaches critical assets in the data center.

 “With our Threat Intelligence Firewall, we eliminate suspicious activity before it even reaches our customers’ data centers,” said Ofri Ziv, Guardicore Vice President of Research and head of Guardicore Labs. “Automatically configured in Guardicore Centra, our Threat Intelligence Firewall is a smart firewall that is continually updated with new data about malicious IP addresses and domains, collected by threat intelligence sensors deployed in live production data centers and cloud deployments across the globe. By identifying, flagging and/or blocking the latest attack, scan, and command and control (C&C) threats, it gives customers the ability to easily and confidently reduce risk by preventing bad actors from gaining access to the data center environment.”

With this new feature, Guardicore Centra is the only host-based segmentation platform to block traffic from malicious IP addresses identified through both its global network and local customer sources. Guardicore Threat Intelligence Firewall adds another layer of defense for security teams using the Guardicore Centra Security Platform to deploy simple and intuitive micro-segmentation controls that reduce the attack surface and detect and respond to breaches within east-west traffic. Guardicore customers benefit from:

  • Early warning about a compromised environment through instant block or alert:
    Instant notifications provide accurate and real-time information that a customer environment has been compromised, allowing faster response.
  • Up-to-date intelligence about the newest threats:
    Lists of malicious IPs are updated daily with the latest attack, scan, and C&C IPs.
  • Reduced exposure to malicious actors:
    Drastically reduce your attack surface to malicious actors that attempt to attack, scan, or make a C&C connection with your organization.

The Guardicore Threat Intelligence Firewall leverages data consumed from Guardicore’s Cyber Threat Intelligence feed, a publicly available resource tracking potential threats specific to data center and cloud infrastructure, eliminating false positives. For more details visit Guardicore’s blog

About Guardicore

Guardicore is a data center and cloud security company that protects your organization’s core assets using flexible, quickly deployed, and easy to understand micro-segmentation controls. Our solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. For more information, visit www.guardicore.com.

Guardicore Centra Security Platform Verified as Citrix Ready

/in , /by

Micro-segmentation Solution Enables Strong Security for Citrix Virtual Apps and Desktops by Isolating Workloads and Preventing Lateral Movement

Boston, Mass. and Tel Aviv, Israel – November 12, 2019 – Guardicore, a leader in internal data center and cloud security, today announced its solution has been verified as Citrix® Ready. The Citrix Ready technology partner program offers robust testing, verification, and joint marketing for Digital Workspace, Networking, and Analytics solutions – with over 30,000 verifications listed in the Citrix Ready Marketplace. Guardicore completed a rigorous testing and verification process for its Guardicore Centra security platform to ensure compatibility with Citrix Virtual Apps and Desktops, providing confidence in joint solution compatibility.

“Using Guardicore Centra’s micro-segmentation capabilities, Citrix customers can now more effectively create and enforce policies that isolate Citrix Virtual Apps and Desktops securely, delivering a Zero Trust approach and preventing unauthorized access as well as lateral movement,” said Sharon Besser, Vice President of Business Development, Guardicore. “By integrating with critical technologies from Citrix and other members of our partner ecosystem we enable customers to maximize the value of existing investments while transforming security in the cloud and software-defined data center.”

“The Guardicore Centra security platform delivers a simple and intuitive way to apply micro-segmentation controls to reduce the attack surface, detect, and control breaches,” said John Panagulias, Director, Citrix Ready. “With this integration and Citrix Ready validation, we can offer customers integrated security solutions that combine Guardicore Centra with Citrix Virtual Apps and Desktops to protect virtual workloads while enhancing productivity.”

Virtual desktop infrastructure deployments require effective security controls that can scale without losing visibility and control. Unlike traditional deployments where end-user machines can be physically isolated from the data center and controlled and monitored, securing virtual environments requires a different approach, especially when applying principles of Zero Trust. Micro-segmentation is central to the network virtualization paradigm. It enables better security for these environments by isolating workloads from each other, controlling and enforcing security policies that prevent lateral movement attacks. Guardicore augments Citrix Virtual Apps and Citrix Virtual Desktops with micro-segmentation, using its advanced capabilities for flows, applications and users to create secure zones that enhance the application of Zero Trust without compromising productivity or user experience.

Available now, Guardicore Centra supports Citrix Virtual Apps and Desktops, and older versions of Citrix XenApp and Citrix XenDesktop. Guardicore Centra for Citrix products can be found immediately in the Citrix Ready Marketplace.

About Guardicore

Guardicore is a data center and cloud security company that protects your organization’s core assets using flexible, quickly deployed, and easy to understand micro-segmentation controls. Our solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. For more information, visit www.guardicore.com.

Banco BASE Selects Guardicore Centra Security Platform to Protect Critical Banking Applications

/in , /by

Guardicore Chosen for Superior Visibility and Segmentation Policy Management to Reduce Risks

Boston, Mass. and Tel Aviv, Israel – October 22, 2019 – Guardicore, a leader in internal data center and cloud security, today announced that Banco BASE, a Mexican financial group and a leader in financing and foreign trade industries, is deploying Guardicore’s Centra Security Platform to provide advanced data center security.

“Banco BASE has built its success by providing the most innovative financial solutions, with agile and personalized service,” said Prudencio Frigolet Gómez. Director of Technology and  Operations at Banco BASE. “A big part of our commitment to our customers is ensuring the protection of their critical data and availability of services. Guardicore Centra gives our IT team deep visibility into east-west traffic for our critical banking applications and the ability to reduce risk with micro-segmentation.”  

Banco BASE is part of the Mexican Financial Group Grupo Financiero BASE. With over 32 years of experience, Banco BASE provides products for corporate and private banking, including loans, investments, digital accounts and currency exchange. 

“We are honored Banco BASE has selected Guardicore to help protect their most critical applications,” said Pavel Gurvich, co-founder and CEO of Guardicore. “Banco BASE quickly recognized that a new, software-defined approach to segmentation is essential for reducing risk and simplifying ongoing policy management for critical applications and payment systems like SWIFT.”

Guardicore’s flagship product, the Centra Security Platform, is a comprehensive data center and cloud security solution that delivers the simplest and most intuitive way to apply micro-segmentation controls to reduce the attack surface and detect and control breaches within east-west traffic. It provides deep visibility into application dependencies and flows and enforcement of network and individual process level policies to isolate and segment critical applications and infrastructure.

About Banco BASE

For nearly three decades, Banco BASE has specialized in providing companies with financial advice solutions, to help them grow and achieve their goals, through a strong services portfolio, including Foreign Currency, Hedging Instruments, Credit, Digital Accounts and Investments. We deliver very efficient financial services due to our network of offices in Mexico’s major cities from which we cover all the country; plus, we have as well a representation office in Toronto, Canada. Furthermore, we have correspondence relationships with the world’s main banks and most Mexican banks, which ensure our transparency, reliability and transaction swiftness.

Our credentials include: Rated by Standard & Poor´s, since February 2000 and by Fitch Ratings since 2006 always increasing our ratings; Approximately 2,000 FX transactions per day and a daily trading volume of USD $450 million; Members of the Association of Certified Anti-Money Laundering Specialist (ACAMS) and founders of the Monterrey-Mexico Chapter; Placed among the 500 most important companies in Mexico, and a “Super Empresa” (one of the best places to work for) by Expansion Magazine (A Time Inc. Enterprise). Our best recommendation comes from our more than 20,000 satisfied national and international customers.

For more information, visit www.bancobase.com 

About Guardicore

Guardicore is a data center and cloud security company that protects your organization’s core assets using flexible, quickly deployed, and easy to understand micro-segmentation controls. Our solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. For more information, visit www.guardicore.com.