Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

2/14/2019
04:30 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Hysolate Extends Cybersecurity Isolation Platform

Platform extensions protect enterprise endpoints from cyberattacks while improving end-user productivity

New York City, NY – Hysolate today announced major extensions to the Hysolate cybersecurity isolation platform. The new capabilities, which include granular USB control, hypervisor-based VPN, and support for Microsoft Azure Information Protection, make it easier for enterprises to protect endpoints from cyberattacks while freeing end-users to access the resources they need.  

"Enterprise end-users are easy and frequent targets for cyberattackers. To protect their devices, companies often layer on security tools and limit what employees can access. But even that doesn’t stop corporate assets from being infiltrated," said Yuki Arbel, vice president of product management at Hysolate. "The Hysolate Platform solves this urgent problem by re-architecting endpoints, making them the secure and productive environments they were meant to be." 

The Hysolate Platform automatically turns end-user devices into software-defined endpoints, in which each endpoint has multiple isolated virtual environments. Endpoints are built on top of a slim hypervisor layer that sits below the operating system. Everything an end-user does happens in specified local virtualized desktops — for example, one that’s limited to sensitive corporate data and another that allows emails and Internet browsing. The environments run locally, side-by-side on the same device, yet are fully isolated. Applications and services automatically launch in the correct, designated virtual environment, making the experience seamless for end-users.

New Features for Protecting Sensitive Information

Granular USB Control
Hysolate eliminates the need for security policies that restrict end-users from plugging USBs into their devices. Its granular USB control identifies USB types and lets IT admins define (1) if the device should be permitted and (2) which virtual environment each USB type can connect to. For instance, companies can specify that USB-enabled 2FA hardware tokens like the RSA SecurID 800 are permitted to connect to the sensitive desktop for privileged access or access to payment systems. Companies can also allow users to freely use USBs in the isolated internet-exposed environment without exposing corporate assets to risk.

Hypervisor-based VPN
Hysolate enables end-users to work remotely without security concerns. Instead of a VPN client running within the user’s operating system - which could be compromised by malware or be exposed to an attack by a rogue WiFi network - it is installed below the OS. Here, it runs in a separate, hardened, non-persistent environment on the Hysolate hypervisor platform to ensure sensitive environments are not at risk of compromise. With this approach, road warriors can use their machines safely in coffee shops and on airplanes without exposing the organization to increased risk.

Extended Protection for Sensitive Information
Hysolate has added support for Azure Information Protection, which classifies data based on its sensitivity and defines how it can be accessed and shared. This integration enables the Hysolate Platform to automatically incorporate these classifications into policies that define what end-users can copy/paste between virtual environments, further protecting corporate assets.

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 11/19/2020
New Proposed DNS Security Features Released
Kelly Jackson Higgins, Executive Editor at Dark Reading,  11/19/2020
How to Identify Cobalt Strike on Your Network
Zohar Buber, Security Analyst,  11/18/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: A GONG is as good as a cyber attack.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-25660
PUBLISHED: 2020-11-23
A flaw was found in the Cephx authentication protocol in versions before 15.2.6 and before 14.2.14, where it does not verify Ceph clients correctly and is then vulnerable to replay attacks in Nautilus. This flaw allows an attacker with access to the Ceph cluster network to authenticate with the Ceph...
CVE-2020-25688
PUBLISHED: 2020-11-23
A flaw was found in rhacm versions before 2.0.5 and before 2.1.0. Two internal service APIs were incorrectly provisioned using a test certificate from the source repository. This would result in all installations using the same certificates. If an attacker could observe network traffic internal to a...
CVE-2020-25696
PUBLISHED: 2020-11-23
A flaw was found in the psql interactive terminal of PostgreSQL in versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. If an interactive psql session uses \gset when querying a compromised server, the attacker can execute arbitrary code as the operating sy...
CVE-2020-26229
PUBLISHED: 2020-11-23
TYPO3 is an open source PHP based web content management system. In TYPO3 from version 10.4.0, and before version 10.4.10, RSS widgets are susceptible to XML external entity processing. This vulnerability is reasonable, but is theoretical - it was not possible to actually reproduce the vulnerability...
CVE-2020-28984
PUBLISHED: 2020-11-23
prive/formulaires/configurer_preferences.php in SPIP before 3.2.8 does not properly validate the couleur, display, display_navigation, display_outils, imessage, and spip_ecran parameters.