Threat Detection and Response
Detect More Threats, Faster and Respond With Greater Intelligence
Multiple
Detection
Methods
Threat detection methods – Dynamic Deception, Reputation Analysis and Policy-Based Detection, simultaneously form a strong security net, virtually ensuring that any live breach is caught, mitigated and contained for in-depth investigation.
Made for the Cloud
Patented Dynamic Deception with additional methods designed for the unique requirements of the cloud provides coverage against attack vectors that other product miss.
Integrated Response
Real time threat detection coupled with actionable intelligence and exact know how about the attackers tools and methods with real-time response recommendations and actions.
Detailed Forensics
Incident data is presented in a human-readable fashion alongside the evidence including indicators of compromise, relevant artifacts and the identifying characteristics of human attackers vs. bots.
See the Entire Attack, Block Lateral Movements and Reduce Dwell Time
Detect
- Distributed, dynamic deception engages attackers and identifies their methods without disrupting cloud or data center performance.
- Reputation analysis detects suspicious domain names, IP address and file hashes within traffic flows.
- Policy-based threat detection enables instant recognition of unauthorized communications and non-compliant traffic.


Investigate
- Collects the entire attack footprint – the files and tools being used and uploaded, and the arsenal of weapons that the intruder activates.
- Performs deep forensics to expose user credentials, attack methods, propagation tactics and more.
- Accelerates investigations with intuitive tags that help to identify and sort significant attack characteristics and trends.
Respond
- Automatically export IOCs to security gateways, SIEM and ticketing systems to block, contain and investigate attacks.
- Quickly update segmentation policies to remediate traffic violations with a single-click.
- Trigger actions on VMs – suspend, halt, disconnect or snapshot – to prevent the spread of damage from ransomware attacks.

What Are the Common Cloud Security Threats?
Denial of
Service Attacks
Account or
credential hijacking
Exploit against hosting
provider vulnerability
Sensitive data exfiltration
directly from cloud app
Privileged
user abuse
Adversary pivoting from
cloud to internal systems
Learn More About Threat Detection and Response

Solution Brief

Solution Brief
