About Us

Deception Technology- Everything you need to know in 2022!

Deception is the progression of the honey pot concept, which enticed people with evil intents to other sites where they could be detected. While security researchers frequently employed honey pots, it was not a popular threat detection approach for businesses. Deception technology provides a different strategy by bringing decoys within the network, providing more information about threats that have gotten past perimeter security.

What is Deception Technology?

According to Infosecurity Outlook Deception technology’s goal is to prevent a cybercriminal who has gained access to a network from causing serious harm. Deception technology generates ruses or decoys that imitate an organization’s technological assets such as servers, databases, employee sessions, passwords, and so on. As a result, attackers have a hard time distinguishing between real and fake targets. These decoys can operate in either a physical or virtual operating system environment.

What is the purpose of using deception technology?

  • Lower risk:

While no security solution will prevent all network attacks, deception technology can offer attackers a false sense of security by convincing them that they have achieved a foothold on your network. From there, you can track and log their actions while remaining confident that they will not harm your decoy systems. You can then use the information and methods gleaned from the attacker’s behavior to better defend your network.

  • Economical solution:

Security teams rarely get the resources to deal with the avalanche of new threats, even though the threat to business networks and data is escalating. For this reason, deception technology is the appropriate solution. Automated warnings minimize the need for manual effort and action, and the technology’s design allows it to scale simply as the degree of organization and threat grows.

  • Broad applicability:

Deception Technology can be utilized in a wide range of devices, including legacy systems, industry-specific systems, and even IoT devices.

Why is Deception Technology Important?

Deception technology has a number of advantages and is still regarded as a vital part of a comprehensive cybersecurity approach.

Reduce the amount of time an attacker spends on the network.

The fake assets must be appealing enough for a cybercriminal to believe they are stealing actual assets. Nevertheless, the invasion will eventually come to a halt when IT stops the attack from spreading—and the attackers realize they will be exposed sooner.

However, the attacker may soon discover that the attack is limited to fake components and that the full organization’s assets cannot be taken. As a result, the attacker may flee swiftly, realizing the attempt was a failure. As a result, deception technology reduces the amount of time an attacker spends on the system.

Reduce the average time it takes to detect and respond to threats.

Because deception technology requires so many resources, IT organizations usually treat a cyberattack on decoy assets as a “special” task, focusing their efforts on researching its actions and movements. Because of this concentration, IT will act swiftly if unwanted access or odd behavior on the fake assets is identified. As a result, deception technology reduces the time it takes to detect and respond to threats.

Cut Down on Alert Fatigue

An IT crew might easily become overwhelmed if they receive too many security alerts. When cyber attackers breach the perimeter and are going to interact with fake assets, the team is notified using deception technology. Additional alarms will assist them in deciphering harmful conduct and tracking the attacker’s activities.

Deception accomplishes more than just making cybercriminals jump through more hurdles. It takes use of the fact that most attackers don’t know everything there is to know about the environment they’re trying to break into, and thus can’t discern what’s real and what’s not. This dramatically shifts the balance of power between attackers and defenders, giving you a clear picture of what bad actors want, why they want it, and how they intend to acquire it.

Read more: https://infosecurityoutlook.com/points-to-consider-before-buying-deception-technology-solution/

Blackcloak Launches New Deception Technology To Detect Cyberattacks On Executives And High-Profile Individuals

BlackCloak, Inc., the Concierge Cybersecurity & Privacy Protection Platform for Leaders and High-Profile People, introduced exclusive deception technology to detect attackers’ blatant tactics to compromise a member’s privacy, home networks, or personal devices.

BlackCloak’s deception technique, often known as a honeypot, deceives attackers into engaging with a service by replicating a real-world home network. The prospective data that is within cybercriminals’ reach will lure them. When an attack is identified, BlackCloak’s deception technology notifies the firm’s Security Operations Center (SOC), which can investigate and act before any damage is caused.

“Our members are increasingly exposed to sophisticated cyberattacks. Hackers are diversifying their preferred attack vectors beyond corporations and supply chain partners to include executives, high-net-worth individuals and high-profile individuals, many of whom have easily exploitable vulnerabilities in their personal digital lives. Advanced deception technology increases our ability to proactively detect, mitigate, and respond to threats before they manifest. It is the perfect complement to BlackCloak’s other concierge cybersecurity and privacy services,” said Dr. Chris Pierson, BlackCloak Founder & CEO.

BlackCloak’s deception engine, which has been operational with existing clients since earlier this year, has already detected malicious activities in  home environments. The first cybersecurity and privacy firm to bring enterprise-grade honeypot technology to clients is the leader in digital executive protection.

“BlackCloak’s design and implementation of deception technology into the personal lives of corporate executives further strengthens their concierge platform. The ability to know an adversary might be lurking inside the footprint of their digital home independent of other common controls is game changing,” said Bob Ackerman, Co-Founder of DataTribe.

BlackCloak is a digital executive protection leader with an aim to secure digital life. In order to accomplish this, the company is developing a comprehensive, SaaS-based cybersecurity and privacy platform with a concierge experience. BlackCloak helps real people protect their personal and corporate reputations, finances, and information by employing technology to secure their homes, gadgets, and internet presence. BlackCloak focuses on high-profile people who have limited time and a lot to lose. BlackCloak ensures that everything they do is seamless and discreet.

Points to consider before buying Deception Technology Solution

The COVID-19 pandemic has caused several cyberattacks in new and unexpected ways and on a massive scale. Especially, the sudden change of many industries to remote work or work from home provided an instantaneous advantage and opportunity to cybercriminals. In ransomware attacks on workforce connected to corporate resources from unsecured home networks and devices. Throughout 2020, these malicious actors tried to identify and exploit employees and they will continue it in 2021. Social engineering has been the starting point of the majority of ransomware attacks. Social engineering strategies, such as phishing can fool users into disclosing sensitive information. 

Deception technology helps companies to quickly create a fictitious IT network that deploys alluring decoys that prevent cybercriminals from identifying the traffic and resources used within the real network. This deceptive network is then effectively integrated into the current IT infrastructure in order to reveal itself to attackers. Deception technology takes into account the attacker’s view and strategy which is used to abuse and explore networks of information recognition and exfiltration.

Following points should be considered before buying Deception Technology-

  • Vendors must understand client’s goals and objectives when it comes to deception
  • Vendors should study and understand client’s current technological infrastructure
  • Deception solution be built to understand attacker techniques, tactics and methods
  • Deception solution should be designed by incorporating the identified goals, technology and attacker tactics
  • Deception solution implemented should be reviewed and updated regularly to address new technology changes and objectives

Companies need to check that the deception solution covers all from endpoint to complex cloud environment for maximum protection. In addition, what kind of disappointment lures vendor provides. An ideal solution provides IT network, server, database, endpoint, applications, cloud and OT decoys, some vendors offer only a number of them. Companies need to check how these deceptions systems are used and whether they are manually or automatically updated. The level of customization also plays a crucial role.

The Level of Interaction to Deceive Attackers

The deception solution only works if it is able to mislead attackers. Real-time operating systems and networks can be custom-made. Consider asking solution providers whether their systems create or use emulated decoys for the actual operating system. The capacity to play and understand an attacker increases as the level of interaction of deception resources used increases. Greater interaction gives the cyber criminals more real experience and offers security teams a better and detailed approach to analyse attacker activity. It also increases their ability to develop enhanced deception environments. Various technical parameters like ensuring that active decoy directory entries are consistent with the real Active Directory should be checked. Cyber deception is a detection method. It is less to useful detect attacks without the ability to respond effectively. This makes it compulsory to create robust, documented incident response processes in deception solutions.

Cyber Criminal Use Cases

If an intrusion is identified, the attackers can be enclosed and observed successfully with minimum or no danger to the true system. However, Deception technology allows security experts to gain insights from the behaviour of an attacker and denies them the opportunity to apply crime data to strengthen security systems. Based on cyber criminals’ activities vendors have created cybercriminal use cases. These use cases are used to improve deception solution.

Scalability and Automation

The technology of deception adds decoys and controls so that the problems can be detected. Scalability is the design and implementation of an authentic set of decoys in an extensive infrastructure. Once these Deceptive resources are installed, companies can manage and update them regularly to maintain realisticness. The processes of generating, deploying, and running deceptive solutions have been significantly simplified by machine learning. Thus vendors with scalable and automated deception solutions should be considered.

If there is a ransomware attack deceptive resources are attacked thus saving real resources from attack. This is a huge advantage over other security solutions. Sectors such as education, health care and government need assistance in their fight against ransomware. Deception technology is useful in the detection of movement and minimizes damage. 

Deception Technology – How it works?

Deception technology creates deceptive traps or decoys that mimic an organization’s technological assets like servers, databases, employee sessions, passwords etc. This makes it difficult for attackers to tell difference between real and fake. These decoys are capable of running in a real or virtual operating system environment.

How Deception Technology Works?

Deception technology detects perpetrators as they make their first move within an organization’s network by taking advantage of the fact that attackers have a predictable attack pattern after gaining access to a network: surveillance and exploitation. Attackers no longer have the luxury of moving freely within a network and returning to the same network several times, using the same exploits and resources each time. Instead, they’re being pushed to devote more money, time, and effort to their attack attempts, and they’re constantly worried that they’ll make a mistake. Deception in other words creates a hostile environment for attackers, one in which using malicious software or vulnerabilities on the wrong target means the attack is over since attackers are fingerprinted. Signatures and patterns of their attacks are created and circulated across the organization. Some methods used by deception technology are baiting, monitoring, fingerprinting and analyzing.

Understand Attacker’s Actions and Motivation

Every day attackers are developing new attacking strategies and tools. The usage of these new attacking technologies has forced security analyst teams of companies to extend their threat detection procedures from classic network attacks to web service applications and cloud security in order to address a wide range of attacking techniques. Understanding attackers’ strategies, on the other hand, does not prevent attacks, breaches, or harm. This information is used by deception planning security teams to increase the probability of triggering a deceptive “Trap”. This gathered information gives security teams an idea about the motive of attackers.

Deception Technology Vs Honeypots

When people hear the word “Deception Technology” common misunderstanding is ‘it’s like a honeypot’. Honeypots are a part of deception Technology. For example, Tokens are bits of information intended to be picked up by attackers accumulating information for the next movement. These are for the purpose of detection. These information pieces or elements aren’t part of the organization’s normal operations, so anyone who touches them is likely doing it maliciously.

AI-based Interactive Deception Technology

The artificial intelligence-based deception technology can help security teams to detect, monitor, learn and adapt to attackers’ techniques. The deception technology platform gathers immense information about attackers during an engagement by using high-interaction decoys based on real operating systems. This data is used to generate forensic reports and automate security response decreasing the time of response. With machine learning algorithms applied to these activities deception technology, becomes more accurate and intelligent.

Technology Integration

It’s also crucial to evaluate the effectiveness of existing security controls and technologies. Deception can easily integrate with existing security technologies or leverage their features like security reports. Deception technology can report to centralized detection solutions e.g., Security information and event management (SIEM) or Intrusion Detection System (IDS). They can also utilize the benefits of other technologies like firewalls. Deception technology is easy to deploy and can easily scale up as per the need of an organization.

Security teams of an organization must be correct 100 percent of the time, but if attackers are correct only once the cost is huge for an enterprise firm. It gives an idea of the problems security teams face. However, deception technology has changed the scenario, now to evade detection by deception technology attackers must be correct 100 percent of the time and security teams are empowered with each attack detection. The most crucial advantage an organization gets from Deception Technology is that it protects real resources and reduces the probability of security breach with the help of decoys resulting in huge cost saving.

TrapX Security Recognized as Clear Technology Leader in Deception Technology

San Jose, CA – January XX, 2020 –   Quadrant Knowledge Solutions has announced today that it has recognized TrapX Security as the Technology Leader in Deception Technology.

Quadrant Knowledge Solutions conducted an in-depth analysis of the major deception technology vendors by evaluating their product portfolio, market presence, and value proposition. According to the analysis, TrapX, with its robust and comprehensive DeceptionGrid platform, has secured strong ratings for the overall parameters of technology excellence and customer impact and emerged as the clear technology leader.

Highlights of the report:

  • Deception technology offers a unique value proposition for threat detection and response, positioning organizations in the driver’s seat and actively engaging with cyber criminals with the use of a fake deception environment. The approach has proven to provide accurate threat detection in the early stage of attacks with significantly less or almost zero false positives.
  • TrapX DeceptionGrid multi-tier approach combines network emulation traps with real OS, offers a deep level of engagement, and supports enterprise-grade scalability. The comprehensive technology capability positions TrapX as the industry-leading provider of deception technology solutions across all deception use cases.
  • The majority of the deception tools available force a tradeoff between deep deception at low scale (virtualized decoys) and low interaction at large scale. TrapX has innovated the market by combining emulated decoys which can proxy attacker activity to high interaction decoys supporting deep deception at enterprise-grade scalability.
  • TrapX product strategy and roadmap is in line with the evolving threat landscape to provide comprehensive protection against next generation of targeted, smart, adaptive malware attacks, and automated attacks across an IT, OT (operational technology), IoT (internet of things), and cloud infrastructure environment.

“The innovative and sophisticated technology platform of TrapX is able to provide enterprise organizations with signatureless detection of sophisticated malware and other attacks,” said Divya Baranawal, Industry Research Manager at Quadrant Knowledge Solutions. “We were impressed by TrapX’s ability to fulfil all deception use cases without compromising enterprise-grade scalability.”

“This has been a year of record growth for TrapX, with organizations in finance, healthcare, manufacturing, and more choosing our patented deception technology over competitive options. Our ability to provide deep deception at enterprise-grade scale for IT and OT networks is disrupting a market historically dominated by legacy virtualized honeypots. This report further validates the choice our growing customer base has made,” said Ori Bach CEO of TrapX Security.

This announcement comes as TrapX closes out a record year with accelerated growth and significant competitive wins across the globe. In 2019 the company expanded its customer base in the healthcare, finance, and manufacturing sectors and has shown record revenue:

  • On July 1, 2019 TrapX announced that it secured $18 million in a series C financing round designed to expand the company’s global footprint to additional countries and verticals.
  • On July 29, 2019 TrapX announced that it appointed veteran sales exec Frank Sacco to expand and lead its global sales organization.
  • On November 13, 2019 Security Current, the premier CISO knowledge-sharing community, announced that CISOs from across industries selected TrapX as the winner of the Security Shark Tank® New York City 2019.
  • On November 14, 2019 TrapX released a case study featuring Procter & Gamble, a Fortune 100 company, on how its product, DeceptionGrid™, was used to transform Procter & Gamble’s cyber resilience program.
  • On November 15, 2019 TrapX announced that it had appointed NASDAQ veteran Mike Fabrico as its new Chief Information Security Officer.
  • On November 21, 2019 TrapX announced that it joined forces with Fortinet®, in order to provide real-time visibility, threat detection, improved incident response and rapid threat containment, leveraging the capabilities of Fortinet Fabric solutions.
  • The analyst firm Gartner recommended to security and risk management leaders to “include deception tools as an alternative in any threat detection initiative, as a main tool for small and midsize enterprises or as a complement to other approaches. At the very least, deception tools will offer high-quality alerts via an easy-to-manage ecosystem of simple landmines that nobody is supposed to touch.” *Gartner, Improve Your Threat Detection Function with Deception Technologies, Gorka Sadowski et al. March 27, 2019.
  • On December 11, 2019 TrapX announced that it named Ori Bach as its new Chief Executive Officer.

To obtain the report by Quadrant Knowledge Solutions visit:

https://trapx.com/landing/trapx-quadrant/

About TrapX Security

TrapX Security is the pioneer and global leader in cyber deception technology. Their DeceptionGrid solution rapidly detects, deceives, and defeats advanced cyber-attacks and human attackers in real-time. DeceptionGrid also provides automated, highly

accurate insight into malicious activity unseen by other types of cyber defenses. By deploying DeceptionGrid, you can create a proactive security posture, fundamentally halting the progression of an attack while changing the economics of cyber-attacks by shifting the cost to the attacker. The TrapX Security customer-base includes Forbes Fortune 500 commercial and government customers worldwide in sectors that include defense, healthcare, finance, energy, consumer products, and other key industries. Learn more at www.trapx.com.

About Quadrant Knowledge Solutions

Quadrant Knowledge Solutions is a global advisory and consulting firm focused on helping clients in achieving business transformation goals with Strategic Business and Growth advisory services. At Quadrant Knowledge Solutions, our vision is to become an integral part of our client’s business as a strategic knowledge partner. Our research and consulting deliverable is designed to provide comprehensive information and strategic insights for helping clients formulate growth strategies to survive and thrive in ever-changing business environments. For more available research, please visit https://quadrant-solutions.com/market-research/.

Trademark Notice:
TrapX and TrapX Security is a trademark of TrapX Security, Inc.

More Information:
Visit the TrapX Website:  https://www.trapx.com

Hear what the users of DeceptionGrid have to say about the product: https://www.youtube.com/watch?v=U0EiOgh0fng

Learn more about DeceptionGrid: https://trapx.com/product/
Visit the TrapX blog: https://www.trapx.com/blog/

Follow TrapX on LinkedIn: https://www.linkedin.com/company/trapx

Follow TrapX on Twitter: @trapxsecurity
Follow TrapX on Facebook: https://www.facebook.com/pages/TrapX/258804147648401

Press Contact:

Jeff Bajayo

Jeffb@trapx.com