Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News

5/22/2019
05:45 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Infocyte Launches Agentless Cloud Workload Protection Platform, Strengthens Capabilities in AWS Environments

Capabilities include agentless deployment via API, automated threat detection, and instant root cause analysis for certifying cloud workloads are clean and aecure.

AUSTIN – May 21, 2019 – Infocyte, a pioneer in proactive threat detection and instant incident response (IR), today announced the availability of Infocyte HUNT Cloud for Amazon Web Services (AWS) — the first solution combining comprehensive detection and IR for high-growth cloud environments, unlike traditional endpoint protection platforms (EPPs) which don't address cloud workloads. Infocyte HUNT Cloud for AWS features agentless deployment through AWS APIs and artificial intelligence (AI) to quickly identify, categorize and respond to persistent, hidden and other advanced threats and vulnerabilities. Leveraging AWS CloudTrail, Activity Trace™ provides immediate insight into the root cause of threats at the host and cloud management layers, enabling instantaneous IR and remediation. Availability of Infocyte HUNT Cloud on the leading cloud services platforms begins with AWS and will expand to Microsoft Azure and Google Cloud Platform (GCP) later this year.

According to Gartner, Inc., enterprises using EPP offerings designed solely for protecting end-user devices (e.g., desktops, laptops) for server workload protection are putting enterprise data and applications at risk. Infocyte HUNT Cloud for AWS, on the other hand, addresses Gartner's six key recommendations.

"As more assets move to cloud environments, cloud security is paramount, but gaps remain for these high-value assets," said Curtis Hutcheson, CEO of Infocyte. "Infocyte HUNT Cloud equips organizations to inspect and certify their entire asset pool across cloud or on-premises is clean and secure, quickly detecting and responding to threats, vulnerabilities or anomalies without business disruption."

Key features of Infocyte HUNT Cloud include:

· Instant, real-time baselining and certification ensure cloud environments are free from security threats or breaches within minutes of deployment.

· Patent-pending memory analysis to address threats capable of bypassing application whitelisting

· Full inventory of their cloud environment, including instances and workloads, with containers and serverless functions coming soon.

· Continuous cloud monitoring and triggered scans based on new or modified cloud workloads, which hunt, detect and respond to threats in real-time.

· Inspect workloads and respond to threats via AWS API, eliminating the need for deploying software.

· Flexible, affordable pricing with off-cloud analysis and consumption-based billing.

Infocyte's flagship product, Infocyte HUNT, is the industry's leading agentless detection and incident response platform that helps security teams identify and respond to hidden threats and vulnerabilities before they cause damage. Leveraging methods used by elite security teams to identify and remove threats, Infocyte uses Forensic State Analysis (FSA), powered by AI and backed by a team of trained security experts. Infocyte's unique patent-pending forensic approach to threat and vulnerability detection is the most scalable and effective memory analysis on the market. Infocyte is the only company to use minimally invasive cloud-based agentless endpoint detection, requiring no modification of the operating systems, software installations or permanent changes to the network.

"Customers moving to the cloud may think they have built-in protections, but are sadly mistaken," commented Dan Wiley, Head of Incident Response at Check Point Software Technologies. "The dynamic nature of cloud infrastructures requires advanced incident response and forensics to identify cloud-based breaches. Through our partnership with Infocyte, we can provide next-generation protection and incident response capabilities in extremely fast engagements, limiting downtime and dwell time."

Infocyte HUNT Cloud's AWS module enables Check Point to provide their customer base with the industry's best threat detection and response platform, ensuring their cloud environments are clean and secure. Integrated with Check Point's CloudGuard family of protections, companies get a comprehensive solution for compliance, prevention and incident response across their entire cloud infrastructure.

In the coming months, Infocyte plans to address the cloud management layer by auditing Identity and Access Management (IAM) account usage for stolen AWS credentials, which is currently in beta. Infocyte will also add capabilities pertaining to response actions and serverless functions later this year.

Infocyte HUNT Cloud will be available for purchase on the AWS Marketplace and through Infocyte's global partner network, which includes leading providers such as Check Point, AT&T and PwC.

 

# # #

 

About Infocyte, Inc.

Infocyte is a recognized leader in proactive threat detection and incident response solutions. Backed by a global network of managed detection and response (MDR) and MSSP providers, Infocyte HUNT and Infocyte HUNT Cloud platforms offer agentless deployment capabilities that allow companies to hunt, detect and respond to sophisticated attacks much faster, thereby stopping security breaches before they inflict damage and reducing dwell time to hours rather than months. Infocyte leverages methods used by elite security teams to identify threats, including forensic state analysis (FSA) powered by machine learning and artificial intelligence (AI). Infocyte also provides the most scalable and effective memory analysis available on the market. Infocyte was founded in 2014 and is headquartered in Austin, TX.

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 7/14/2020
Omdia Research Launches Page on Dark Reading
Tim Wilson, Editor in Chief, Dark Reading 7/9/2020
Why Cybersecurity's Silence Matters to Black Lives
Tiffany Ricks, CEO, HacWare,  7/8/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Threat from the Internetand What Your Organization Can Do About It
The Threat from the Internetand What Your Organization Can Do About It
This report describes some of the latest attacks and threats emanating from the Internet, as well as advice and tips on how your organization can mitigate those threats before they affect your business. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13934
PUBLISHED: 2020-07-14
An h2c direct connection to Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M5 to 9.0.36 and 8.5.1 to 8.5.56 did not release the HTTP/1.1 processor after the upgrade to HTTP/2. If a sufficient number of such requests were made, an OutOfMemoryException could occur leading to a denial of service.
CVE-2020-13935
PUBLISHED: 2020-07-14
The payload length in a WebSocket frame was not correctly validated in Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M1 to 9.0.36, 8.5.0 to 8.5.56 and 7.0.27 to 7.0.104. Invalid payload lengths could trigger an infinite loop. Multiple requests with invalid payload lengths could lead to a denial of ser...
CVE-2020-15721
PUBLISHED: 2020-07-14
RosarioSIS through 6.8-beta allows modules/Custom/NotifyParents.php XSS because of the href attributes for AddStudents.php and User.php.
CVE-2020-7592
PUBLISHED: 2020-07-14
A vulnerability has been identified in SIMATIC HMI Basic Panels 1st Generation (incl. SIPLUS variants) (All versions), SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All versions), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions), SIMATIC HMI KTP700F Mobile Arctic ...
CVE-2020-7593
PUBLISHED: 2020-07-14
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (V1.81.01 - V1.81.03), LOGO! 8 BM (incl. SIPLUS variants) (V1.82.01), LOGO! 8 BM (incl. SIPLUS variants) (V1.82.02). A buffer overflow vulnerability exists in the Web Server functionality of the device. A remote unauthenticate...