Illusive Networks’ Wire Transfer Guard, the first cyber deception technology to protect wire transfer banking networks from cybercriminals
Wire Transfer Guard detects and mitigates targeted Advanced Attacks against global money wire transfer networks system
New York, NY, September 26, 2016 – illusive networks, the leader in Deceptions Everywhere® cybersecurity, today announced Wire Transfer Guard™, the first cyber deception technology designed to detect, report and mitigate targeted attacks against global wire transfer banking systems.
Recently the wire transfer system proved a highly attractive target for Advanced Attackers, as illustrated by the $81 million cyber heist from the Bangladesh Bank, which has been followed by a dramatic increase in targeted attacks around the globe.
Defending banking network presents unique challenges. It is very difficult for financial institutions to quickly update and patch wire transfer mission-critical systems. Conventional prevention technologies have failed to properly defend financial institutions. Smaller banks with minimal cyber defense resources have also served as weak links in the chain.
illusive continues to pioneer the deception-based cybersecurity market with its newest cyber deception technology aimed specifically at securing global wire transfer systems. Wire Transfer Guard deploys a purpose-built family of deceptions to lure the attacker to multiple decoy wire transfer systems, provides real-time source-based forensics, and detects attacker’s lateral movements aimed at the global wire service network in real-time.
“The vast majority of attention and budgets continue to be allocated to prevention tools, which are proving ineffective in protecting against advanced attacks that caused severe damage and financial loss to financial institutions worldwide,” said Shlomo Touboul, CEO, illusive networks. “It’s also not easy to upgrade the wire transfer system configuration. An overall blanket is needed to close the gap in security. Deception based technology is the last chance to detect and mitigate sophisticated attacks aimed at the wire transfer system.”
In an attack, hackers penetrating any endpoint in the network, use existing attack vectors and move laterally in search of wire transfer network user and admin credentials, as well as wire transfer network entities such as the AA, AG, WP and MQ etc. illusive Wire Transfer Guard deploys deceptions on every end-point in the networks, making it appear to attackers as if they are infiltrating the real system. In actuality, they are interacting with decoy systems, entities, objects and credentials (“deceptions”). When attackers activate any of the deceptions, they are immediately detected, reported specifically as a wire transfer systems attack, and forensics data is automatically obtained from the source endpoint targeting the wire transfer network, and the attack is mitigated.
Even attackers who are already established in the customer network and try to move to any wire transfer network entity will be detected. illusive Wire Transfer Guard deceptions are invisible to regular users and IT personnel, offering protection against insider and external attackers without generating any false positive alerts.
Many global wire transfer networks installations use older versions that do not meet current security standards, and are costly and difficult to update. Wire Transfer Guard closes the security gap by detecting and mitigating against attacks regardless of version and configuration.
Wire Transfer Guard combines with illusive networks’ Attacker View™, which reveals all attack paths to the network. This allows defenders to understand where their network is exposed and make calculated decisions on how to optimize deception policy.
illusive Wire Transfer Guard™ Key Features:
- Attack Mitigation
- Creates multidimensional wire transfer network-specific deceptions that together create decoy wire transfer networks. (The decoy networks includes credentials, databases, gateways and access servers as well as Web interface and other system entities).
- Prevents advanced attacks from reaching your real assets by diverting attacks into decoy networks.
- Detailed Forensics
- Provides detailed real-time and source-based forensics on advanced attackers targeting wire transfer systems to reveal the nature of the APT.
- No false positives
- Deceptions are invisible to end users or regular IT personal and incidents are reported in real time.
- Does not increase attack surface
- Since there is no agent installed on the endpoints, attacker cannot reverse engineer agents and find ways to mitigate its operation
- Easy to Deploy and Scale
- Agentless technology
- Once deployed, no IT team intervention is required
- Requires minimal operation via a SIEM system or CISO team.
About illusive networks
illusive networks is pioneering deception-based cybersecurity with its patent-pending Deceptions Everywhere™ technology that neutralizes targeted attacks and Advanced Persistent Threats (APT) by creating a deceptive layer across the entire network. By providing an endless source of false information, illusive networks disrupts and detects advanced attacks with real-time forensics and without disruption to business. For more information, please visit www.illusive.com or follow @illusivenw on Twitter.