Available now, Scout 4 introduces a new kernel-level Stealth Agent, which along with an enhanced analysis engine, enables active defense solutions against in-progress attacks. In a world where it is widely accepted that advanced threats continue to bypass security defenses, the ability to detect and respond to in-progress attacks is critical to reducing the attack dwell time – the time available for attackers to operate on the network and cause damage.
"After establishing a beach head, attackers move laterally through networks to identify and exploit targets, often for extended periods of time," said former global CISO for BAE Systems, Eric Noonan, now CEO at CyberSheath Services International. "Getting visibility into these behaviors is critical to mounting timely countermeasures and minimizing damage."
The new agent-based sensor architecture enables CT Scout 4 to support rapid and flexible deployment options that enable customers to implement active defenses and reduce attack dwell time. Deployed on both physical and virtual devices, the Stealth Agent provides great flexibility in deploying next-generation honeynets that not only help detect unknown threats, but also provide the intelligence on attacker means and motives necessary for implementing effective active defense countermeasures. The Stealth Agent can also be deployed directly on production systems as part of active defense strategies to accelerate countermeasures.
"Today's organizations have largely accepted the fact that attackers are getting into their networks – that it's no longer a question of 'if' but 'when'," said Neal Creighton, CEO, CounterTack. "With the next generation of CT Scout, CounterTack enables organizations to implement active defense strategies, with rapid deployment honeynets and targeted production system monitoring."