SAN MATEO, CA — Sept. 1, 2015 — TrapX Security™, a global leader in deception-based cyber security defense, today announced the company’s DeceptionGrid™ platform has been listed in a report by leading research firm Gartner on deception techniques and technologies. “Emerging Technology Analysis: Deception Techniques and Technologies Create Security Technology Business Opportunities” (published July 16, 2015) discusses new techniques and capabilities that are expected to impact the way advanced threats are handled, and articulates how organizations can successfully use deception as a threat response tactic. The report found that “By 2018, 10 percent of enterprises will be using deception tools and tactics, and actively participate in deception operations against attackers.” The report’s findings suggest, “Although still nascent, deception as a defense strategy against attackers has merit and can be an attractive new capability for larger organizations desiring advanced threat detection and defense solutions.” Access the full report here: http://deceive.trapx.com/GartnerEmergingTechnologyReport_210.html
“CISOs today find themselves at war with an increasingly capable enemy. Attacker techniques have evolved to defeat traditional perimeter and endpoint security layers — the traditional defense-in-depth approach to network security simply isn’t working,” said Carl Wright, EVP and general manager of TrapX Security. “Deception has always been key to warfare. Deception technology can change the fundamental economics of cyber defense, shifting costs from defender to attacker while denying them freedom of movement on the network. We are pleased to see Gartner evaluating deception technology as a new category of defense.”
DeceptionGrid technology relies on emulations – fake assets that look and act identical to real assets, which are intermingled with actual information technology resources at scale in an enterprise network. The instant attackers touch an emulation, a high-confidence alert is triggered and the attack can be compartmentalized. DeceptionGrid provides deep forensic analysis and delivers a comprehensive assessment directly to an organization’s security operations team, providing a level of situational awareness and visibility not seen previously in sensor based platforms.
Similar to defense-in-depth, deception technologies can be applied at all attack stages of the Cyber Kill Chain® (i.e., reconnaissance, weaponization, delivery, exploit, installation, command & control and actions) to cripple advanced threats that continue to plague enterprise organizations.
“Deception solutions are emerging to play a greater role in the future of enterprise threat defense,” Gartner analyst Lawrence Pingree writes in the report. “Detection is often a prerequisite to higher-quality deceptions. However, use of deceit in the enterprise is beginning to be used to actively thwart or ‘black-hole’ malware botnets, threat actors and suspicious connections.”
What’s more, in the analysis, Garter states that “many organizations don’t understand what threat deception is; educating security buyers on its usefulness will be crucial to furthering adoption of deception technologies and concepts.”
Gartner recommends that product managers should examine how threat deception techniques can be leveraged to enhance their existing threat defense capabilities against advanced adversaries.
The full report, “Emerging Technology Analysis: Deception Techniques and Technologies Create Security Technology Business Opportunities” can be accessed here: http://deceive.trapx.com/GartnerEmergingTechnologyReport_210.html
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
TrapX Security™ and DeceptionGrid™ are trademarks licensed by TrapX Security, Inc.
Cyber Kill Chain® is a registered trademark of Lockheed Martin.Visit the TrapX Website: http://www.trapx.com
Watch a 60 second introduction to deception technology: http://trapx.com/whitehat-versus-blackhat/
Learn more about DeceptionGrid: http://trapx.com/products/deceptiongrid/
Visit the TrapX blog: http://www.trapx.com/blog/
Follow TrapX on Twitter: @trapxsecurity
Follow TrapX on LinkedIn: https://www.linkedin.com/company/trapx
Like TrapX on Facebook: https://www.facebook.com/pages/TrapX/258804147648401
TrapX Security is a leader in the delivery of deception-based cyber security defense. Our solutions rapidly detect, analyze and defend against new zero-day and APT attacks in real time. DeceptionGrid™ provides automated, highly accurate insight into malware and malicious activity unseen by other types of cyber defense. We enable a proactive security posture, fundamentally changing the economics of cyber defense by shifting the cost to the attacker. The TrapX Security customer base includes Forbes Global 2000 commercial and government customers around the world in sectors that include defense, healthcare, finance, energy, consumer products and other key industries. Learn more at www.trapx.com.