Network security

Airgap Ransomware Early Detection™ strengthens network security perimeter

Airgap Networks, Inc.

“Detect ransomware IOCs with confidence, Zero Trust isolates all endpoints with granular segmentation and prevents the spread of ransomware with surgical precision.”

Airgaps networks (https://airgap.io), the innovative company that develops solutions to prevent the lateral spread of ransomware, announces the release of Ransomware Early Detection (RED™), which complements the Airgap Ransomware Kill Switch™ for both early detection of ransomware threats and preventing the lateral spread of malicious intent in any network environment.

Unveiled at RSA 2022 in San Francisco, Airgap RED™ complements Airgap’s end-to-end anti-ransomware defense by leveraging Zero Trust technology from detection to enforcement. RED™ detects and flags suspicious behavior patterns that often prefigure ransomware attacks.

Using advanced machine learning and behavioral identification models, RED™ continuously updates its understanding of network behavior and dynamically identifies malicious access patterns. It establishes a baseline of east/west and north/south traffic patterns to determine if they represent logical user progressions. RED™ can also detect malware attempts to spread and infiltrate sensitive areas of the network.

Airgap RED™ combines various Airgap security technologies and underlying intellectual property, industry standard protocols, network analysis and machine learning models to map its ransomware detection against the MITER ATT&CK framework.

Airgap RED™ primarily focuses on the most common early stages of ransomware attack sequences such as:

  • SMB Lateral Movement
  • Ransomware File Encryption
  • Malicious Access Patterns
  • Deviations from baseline behaviors

“Unfortunately, ransomware has become the tool of choice for cybercriminals, and no business or government is immune,” noted Ritesh Agrawal, CEO of Airgap. “Enterprises lose billions of dollars each year to these attacks, but Airgap is committed to preventing these threats with sophisticated security measures deployed for every endpoint accessing critical enterprise infrastructure.”

Working in tandem with the Ransomware Kill Switch™, Airgap’s agentless malware removal weapon, RED™ delivers a double punch to neutralize ransomware attacks. Identifying anomalous access attempts at the point of attack, RED™ integrates with the Ransomware Kill Switch™ to block access, implement additional Zero Trust security measures for proper authentication or, in the event of a breach, immediately quarantine the compromised node before the ransomware can spread. to other network terminals.

For more information on how Airgap can help boost the visibility, security, and overall ransomware mitigation of all your IT and OT network deployments, please visit https://airgap.io/ and attend the SANS ICS Security Summit 2022 June 1.

About Airgap Networks Based in Santa Clara, CA, Airgap Networks offers an agentless Zero Trust segmentation platform that isolates each endpoint and prevents the spread of ransomware. Airgap’s unique and patented Ransomware Kill Switch™ is the most powerful answer to ransomware threats. To learn more about Airgap and its offerings, please contact [email protected]

Share the article on social networks or by e-mail:


Source link