STEALTHbits Technologies, a cybersecurity software company focused on protecting an organization’s sensitive data and the credentials attackers use to steal that data, announced the release of StealthDEFEND 2.2, their real-time threat detection and response platform.
Attackers continue to advance their techniques to infiltrate organizations, exploiting vulnerabilities in Active Directory and the structured and unstructured data that contain the sensitive information they want.
Organizations concerned about data breaches and the rising costs to remediate them need advanced solutions to not only quickly identify, but automatically respond to an ever-increasing barrage of attacks and breaches.
With the enhancements delivered in StealthDEFEND 2.2, security professionals can now identify forged Kerberos Privileged Attribute Certificates (PAC) and detect when the Ntds.dit file – Active Directory’s database – is being tampered with.
Both of these attack vectors are very difficult to detect via native means, potentially draining resources with no guarantee of detection. StealthDEFEND makes it simple to detect these threats and mitigate the risk these threats pose with less resources.
Equally as important as the ability to detect these threats is the ability to automate the appropriate responses to contain them.
Adding to an already extensive catalog of preconfigured and user-defined response playbooks, StealthDEFEND 2.2 introduces the ability to import/export playbooks across the organization from development-test to pre-production to production, in order to standardize threat responses enterprise-wide.
New action types have also been included in v2.2 such as the ability to disable computer accounts and more comprehensively tag resources involved in an attack for accelerated remediation.
Additional attention was paid to overall product security and user experience with the introduction of One-Time Password (OTP) MFA support for console access and configuration activities, alert suppression options, enhanced event translation for access modifications, and more.
“This release simplifies the detection of new, complex, and difficult attacks with minimal involvement from security staff,” said Rod Simmons, Vice President of Product Strategy, STEALTHbits Technologies.
“StealthDEFEND 2.2 addresses both the detection and remediation sides of the security equation. By reducing false positives and standardizing threat responses across the organization, it helps ensure better protection and enables teams to accomplish far more with existing resources.”