the leader in elastic security, today announced the addition of lateral
movement prevention to the ShieldX Elastic Security Platform for AWS.
Also known as East-West security, enterprises can now for the first time
monitor and prevent lateral movement inside the AWS public cloud to
complement ShieldX’s existing capability for VMWare ESXi and Microsoft
This eliminates a significant management and security challenge, by
providing a full range of security controls including visibility into
the movement of attacks and data between applications within the cloud.
Until now, AWS users had the ability to monitor traffic in and out of
their environment but had no visibility to see how threats spread
between assets within the environment. ShieldX’s security capabilities
provide users the ability to view traffic, identify anomalies and block
attacks inside AWS VPCs and subnets. It also vastly improves the
company’s leading microsegmentation capabilities by giving the
industry’s only option in AWS to help enterprises eliminate a flat
network and perform threat prevention with deep packet inspection as
organizations move to the public cloud.
“The best security tool or response suite in the world is useless if the
network administrators and security team have to protect everything all
the time,” said Chase Cunningham, Forrester analyst in The Zero Trust
eXtended Ecosystem: Networks, January 2019. “Segmentation is a necessary
part of basic network architecture, and the ability to be as granular as
possible in relation to application needs, user access, and data
repositories are key pieces of microsegmentation for Zero Trust. All
networks are hybrid in some fashion or form in today’s enterprises, and
only with microsegmentation technologies can any security team have a
hope of staying ahead of the threat.
Today’s cyber-attacks are no longer smash and grab incidents —
adversaries are now intending to dwell within networks for a long time.
FireEye’s 2017 M-Trends report noted, “An often overlooked fundamental,
lack of segmentation leads to easy lateral movement by attackers.” On hacker
forums as well as publicly available open source forums, toolkits
exist to help to aid white and black hats execute or avoid lateral
movement. At Black Hat in 2017, security
researcher Tal Be’ery explained how lateral movement was experiencing an
“Most lateral movement detection hasn’t evolved for cloud-based
deployments nor for ones that span the multi cloud. Because of this lack
of visibility, organizations have been hesitant to move sensitive data
to AWS,” explained ShieldX CTO Manuel Nedbal. “Until this release,
organizations could not detect or block lateral movement in AWS and with
this functionality we are enabling companies to fully embrace the
advantages of the cloud without compromising on security controls.”
With the new release, security teams with enterprise data centers in AWS
can track and monitor for:
- Exploits used by attackers or worms
- Propagation of malware
- Anomalous behavior of workloads
- Sensitive data movement and anomalies thereof
Indicator Of Pivot to indicate successful breaches and prevent further
ShieldX develops and delivers innovative new capabilities designed for
the dynamic nature of the cloud. With experts dedicated to cloud
innovation, ShieldX’s veteran research and development team has filed 22
patent applications. To date, six patents have been granted. Users can
leverage ShieldX’s patented technology to automatically identify and
implement the security policies for essential controls—including
microsegmentation, threat prevention, firewall, malware detection and
lateral movement prevention—across multi-cloud environments.
In addition, ShieldX continues to gain recognition in the security
market, from its 5 Star rating in SC
Media to its most recent 5 Star end user recognition in ITCentralStation.
For additional details about ShieldX’s solutions, visit: https://www.shieldx.com/product/.
ShieldX makes security the easiest thing enterprises do in the cloud.
ShieldX is a cloud-native network security platform that elastically
delivers a full stack of agentless security controls—microsegmentation,
IPS, firewall, malware prevention, and more–to protect data centers,
cloud infrastructure, applications and data. Our driving philosophy is
to bring cloud speed, scale and orchestration into the hands of
security. Based on cloud agnostic microservices technology, ShieldX
ensures security understands and maintains vigilance over cloud
operations and workflows by continuously translating a security’s
intention into controls as cloud infrastructure rapidly evolves. Today,
our customers, such as Alaska Airlines and IDT, have saved millions by
eliminating control sprawl and consolidating processes to dramatically
reduce tactical systems management.