Version 4.0 is a key part of our mission to protect businesses around the world from data breaches and disruption caused by cyber attacks. It squarely addresses the challenge faced by security and operations teams of combating the growth in the attack surface created by rising numbers of vulnerabilities and devices. We’ve added predictive and manageable attack surface policy control in addition to several powerful, new capabilities that prevent, detect, contain, and respond to threats.
Security and operations teams face the formidable task of controlling and reducing the attack surface available to increasingly sophisticated and stealthy techniques and a surge in potentially vulnerable IoT devices. According to Common Vulnerabilities and Exposures (CVE) data, the number of CVEs issued in the last few years has increased dramatically, resulting in a near-constant need to monitor application usage as new CVEs are issued. Compounding this challenge is the growth of IoT devices within the Enterprise. Gartner predicts that in less than two years from now, there will be 25 billion connected IoT devices. That number is expected to multiply over the next several years.
Furthermore, today’s attacks move fast, often in seconds rather than minutes or hours and leave little time for incident responders to prevent the damage. Automation helps security and operations teams prevent, detect, contain, and remediate fast-moving attacks while controlling the costs of scarce staff resources often overwhelmed by the complexity and volume of threats. Automation empowers security and operations teams to succeed in an environment that minimizes time pressures on incident response. Version 4.0 of the enSilo Endpoint Security Platform provides two critical capabilities that proactively and automatically reduce the attack surface.
The first is the automatic reduction of the attack surface using CVE and application rating data to visualize risk and design policy-based actions within our Communication Control feature. This enhancement helps security and operations teams quickly prioritize which applications with critical vulnerabilities or low ratings are in use, determine impacted endpoints, and assess the risk. In one-click, users can reduce the attack surface with pre-built policies based on severity using the Common Vulnerability Scoring System (CVSS) and application rating enrichment that block communications by potentially unwanted or vulnerable applications and accelerate remediation processes.
The second is the automatic discovery, classification, and assessment of IoT devices to determine if they are running vulnerable applications with known CVEs. This data is also visualized in our Communication Control feature with policy actions that enable security and operations teams to restrict IoT device communications through integrations with security gateways. By automatically eliminating the threat posed by an expanding number IoT devices potentially running software with critical vulnerabilities, security and operations teams can protect endpoints and the business from attacks launched via compromised IoT devices and accelerate remediation efforts.
Reducing the attack surface, proactively and automatically, across endpoints and IoT devices further minimize incident response time pressures while also preventing vulnerability exploitation that commonly leads to data breaches and the disruption caused by cyber attacks. Learn more about these exciting new capabilities by scheduling an information session and demo in our booth, #1346 at Black Hat USA 2019, August 7-8 in Las Vegas, Nevada.
These capabilities represent a significant advancement of the enSilo Endpoint Security Platform. Additional features in Version 4.0 include expanded orchestration, USB device control, and multi-tenancy management enhancements. Subscribe to our blog to receive the latest news about Version 4.0.
Roy Katmor is CEO and co-founder of enSilo, an Endpoint Security Platform provider. Read more enSilo blogs here.