New proactive IT security adapts to attack surfaces 

September 30, 2024
| No comments
New proactive IT security adapts to attack surfaces Image: Bing - AI
Advertising

Share post

Bitdefender today introduced its new GravityZone Proactive Hardening and Attack Surface Reduction (PHASR). GravityZone PHASR analyzes individual user behavior, such as application usage or resource access privileges, and clusters users into groups with similar behavior patterns.

With this solution, Bitdefender offers the industry's first dynamic solution that directly aligns cyber defense strategies with user behavior. This novel approach ensures that IT security policies and controls are precisely tailored to the privileges and behaviors that an IT security manager wants to give users. As the attack surface changes, the guidelines are dynamically adjusted. This new technology creates new foundations for applying and managing defense-in-depth security in companies.

Advertising

IT security identifies user roles

Thanks to GravityZone PHASR, IT security teams can anticipate and mitigate emerging risks before they escalate, as the technology immediately adapts to new user roles. This ensures that security measures always correspond to the new threat situation. If, for example, a user's responsibilities change or a new attack technique emerges, the new technology automatically suggests adapted policies to maintain protection. Such a proactive approach enables companies to drastically reduce changing attack surfaces.

GravityZone PHASR integrates a completely new technology into Bitdefender's comprehensive IT security and risk analysis platform Gravity Zone. The technology is based on years of sophisticated machine learning (ML) models that PHASR applies to individual users, groups, applications and endpoints within Bitdefender GravityZone XDR. It uses proprietary AI algorithms to establish behavioral norms across groups for critical areas such as access to data, use of applications and security-relevant permissions. As a result, the solution comprehensively assesses vulnerabilities and potential attack vectors.

Advertising

Subscribe to our newsletter now

Read the best news from B2B CYBER SECURITY once a month



By clicking on "Register" I agree to the processing and use of my data in accordance with the declaration of consent (please open for details). I can find more information in our Privacy Policy. After registering, you will first receive a confirmation email so that no other person can order something you don't want.
Expand for details on your consent
It goes without saying that we handle your personal data responsibly. If we collect personal data from you, we process it in compliance with the applicable data protection regulations. Detailed information can be found in our Privacy Policy. You can unsubscribe from the newsletter at any time. You will find a corresponding link in the newsletter. After you have unsubscribed, your data will be deleted as soon as possible. Recovery is not possible. If you would like to receive the newsletter again, simply order it again. Do the same if you want to use a different email address for your newsletter. If you would like to receive the newsletter offered on the website, we need an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data is not collected or only collected on a voluntary basis. We use newsletter service providers, which are described below, to process the newsletter.

CleverReach

This website uses CleverReach to send newsletters. The provider is CleverReach GmbH & Co. KG, Schafjückenweg 2, 26180 Rastede, Germany (hereinafter “CleverReach”). CleverReach is a service that can be used to organize and analyze the sending of newsletters. The data you enter for the purpose of subscribing to the newsletter (e.g. email address) will be stored on the CleverReach servers in Germany or Ireland. Our newsletters sent with CleverReach enable us to analyze the behavior of the newsletter recipients. This can include It is analyzed how many recipients have opened the newsletter message and how often which link in the newsletter was clicked. With the help of so-called conversion tracking, it can also be analyzed whether a previously defined action (e.g. purchase of a product on this website) took place after clicking on the link in the newsletter. Further information on data analysis by CleverReach newsletter is available at: https://www.cleverreach.com/de/funktionen/reporting-und-tracking/. The data processing takes place on the basis of your consent (Art. 6 Para. 1 lit. a DSGVO). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations that have already taken place remains unaffected by the revocation. If you do not want an analysis by CleverReach, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and deleted from the newsletter distribution list after you have canceled the newsletter. Data stored by us for other purposes remain unaffected. After you have been removed from the newsletter distribution list, your e-mail address may be stored by us or the newsletter service provider in a blacklist if this is necessary to prevent future mailings. The data from the blacklist is only used for this purpose and is not merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR). Storage in the blacklist is not limited in time. You may object to the storage if your interests outweigh our legitimate interest. For more information, see the privacy policy of CleverReach at: https://www.cleverreach.com/de/datenschutz/.

Data processing

We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.

The main advantages of GravityZone PHASR

  • Dynamically adaptable security controlstailored to each company – GravityZone PHASR is integrated into GravityZone endpoint security and risk analysis and correlates user behavior with known threats and attacks. The basic factors for this are the type of work a user does, the company's industry and their region. As a result, the defense of the attack surface is configured in the best possible way and risks are minimized without compromising operational efficiency.
  • Fundamental shift to proactive prevention and hardening of the IT environment – The technology identifies and closes security gaps before attackers can exploit them. The solution delivers hardened IT security specifically for user groups, endpoints and all external users connected to the company network and recommends measures to the responsible IT administrators such as blocking suspicious users or applications. To accept these, they need a single mouse click.
  • Optimized security investments – GravityZone PHASR increases the impact of security investments by identifying and implementing necessary new policies to achieve the greatest impact for reduced overall risk, especially changes resulting from supply chain attacks, insider threats, and mergers and acquisitions.

Security teams face the difficult task of keeping up with increasingly sophisticated and frequent attacks. The current focus of IT security models and the industry exacerbates this problem: it focuses too much on detection and defense, and tries to use overarching standard approaches to protect the ever-growing attack surface and manage IT exposure and endpoint security.

New approaches to dynamic IT security

"The attack surface is growing, making it increasingly difficult for security teams to keep up with the ever-changing risks in the company, posed by employees, customers, external third parties and various systems," said Andrei Florescu, President and General Manager of Bitdefender Business Solutions Group. "GravityZone PHASR creates a new foundation here and is in line with Bitdefender's approach of providing a holistic view of risk in a unified platform. This approach improves IT security automation, enables real-time control of risk situations and strengthens defenses to stay one step ahead of constantly changing attacks."

Bitdefender GravityZone PHASR will be available to a select group of customers as part of the GravityZone Early Access program to meet the growing demand for proactive protection and attack surface reduction.

More at Bitdefender.com

 

About Bitdefender

Bitdefender is a leading global provider of cybersecurity solutions and antivirus software, protecting over 500 million systems in more than 150 countries. Since it was founded in 2001, the company's innovations have consistently ensured excellent security products and intelligent protection for devices, networks and cloud services for private customers and companies. As the supplier of choice, Bitdefender technology is found in 38 percent of security solutions deployed around the world and is trusted and recognized by industry experts, manufacturers and customers alike. www.bitdefender.de

 

Matching articles on the topic

Sophisticated Phishing-as-a-Service (PhaaS) platform

Security researchers have uncovered a sophisticated Phishing-as-a-Service (PhaaS) platform that poses a serious threat to organizations around the world. The threat actor ➡ Read more

PDFs: The Trojan Horses of Hackers

Cybercriminals are increasingly using the popular PDF file format to hide malicious code. Recent IT forensics findings underscore this: 68 ➡ Read more

Maximum IT security for OT systems

OT systems are rarely attacked directly. However, gaps and vulnerabilities in traditional IT make OT systems more vulnerable to attacks. ➡ Read more

IT resilience: cybersecurity at the storage level

More data security features for greater IT resilience at the storage level: Cyber ​​security managers can pursue a proactive data security approach at the storage level with highly secure NetApp storage and thus ➡ Read more

Algorithms for post-quantum cryptography

A provider of IT security solutions introduces Quantum Protect, a post-quantum cryptography application suite for its u.trust General Purpose Hardware Security Modules (HSMs) ➡ Read more

Power grid threat: security gaps in solar systems

A cybersecurity solutions provider published its research report “SUN:DOWN – Destabilizing the Grid via Orchestrated Exploitation of Solar Power Systems”, which ➡ Read more

Cloud and SaaS security is inadequate

A recent study shows that companies' security strategies are failing to keep pace with the rapid adoption of cloud-native technologies. 28 ➡ Read more

OT environments: Detect and assess threats

Enterprises with limited resources can identify, assess, and make informed decisions about threats in OT environments with a comprehensive endpoint protection solution. ➡ Read more

Bitdefender, endpoint security, PR News
, , , , ,