We are pleased to announce that NSFOCUS was selected by Gartner® as a sample vendor in the field of Deception as a Feature in the report Emerging Tech Impact Radar: Security (November 2022).
According to the report, “This technology can significantly reduce the amount of time an attacker gets to spend in a compromised environment by notifying the security teams early in the attack window. The alerts triggered by the systems are of a very high fidelity, since genuine users cannot accidentally interact with the decoys, and thus defenders can act with confidence and speed.”
Employing accumulated experience in technical research and productization, NSFOCUS applies deception technology to incubate and empower various security products to comprehensively improve security protection capabilities. With established systems, such as full flow threat detection and response system ISOP-NDR, global threat hunting system ATH, and NSFOCUS network traffic analyzing and tracing platform (MagicFlow) as the core, NSFOCUS further functionalized and atomized deception technology, and built a more complete solution.
When ISOP-NDR system discovers a suspicious attack, it will draw its traffic to the advanced global threat hunting system ATH which conducts in-depth monitoring to determine the veracity of attacker behavior. For identified attacks, ATH will trace the source of the attack behavior at full scale for evidence of attack or breaching based on the MITER ATT&CK concept. In the scenario of telco’s backbone networks with large traffic, the MagicFlow system can be used to extract key flow data from ATH data to reduce the workload of data analysis. These services enable fast digital tracing and forensics from a sea of data and extract fingerprints of attack incidents, such as its source location, attack vector, threat actor, and activity to establish attack-related database for our customers. It is also available to replay the attack process and collect attacker portraits to traceback attack sources and help customers put countermeasures in place.
NSFOCUS All-Traffic Threat Analysis and Response System
NSFOCUS All-Traffic Threat Analysis and Response System, also called ISOP-NDR system, is a product that focuses on offense and defense capabilities. It offers a combination of compliance and offense and defense capabilities. With full-flow storage and data analysis as its fulcrum, and the help of automatic processing, this system supports effective threat analysis, judgment, handling and tracing, and improves customers’ capability of security analysis and response.
NSFOCUS Advanced Threat Hunting System
NSFOCUS Advanced Threat Hunting System, also called ATH system, is a product designed for actual network offense and defense, it adopts deceptive defense technology to accurately trap attack behaviors and provide clues to intrusion activities. Furthermore, it has the capability to combine tracing and countermeasure with OSINT intelligence, which helps customers portray attackers and protect their assets.
NSFOCUS Threat Analysis Traceback System
NSFOCUS Threat Analysis Traceback System, or MagicFlow, is a comprehensive flow traffic analysis platform that integrates capabilities that include network traffic flow analysis, DDoS monitoring, attack source traceback, hotspot application analysis, and large network route threat detection. Driven by technologies such as NSFOCUS big data architecture, NSFOCUS Threat Intelligence (NTI) and AI machine learning, this product provides customers with network-wide, all-around visualized analysis and traceability.
References: Gartner, “Emerging Tech Impact Radar: Security”, November 2022.
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. Gartner and Magic Quadrant are registered trademarks and service marks of Gartner, Inc. and/or its affiliates in the U.S. and internationally and are used herein with permission. All rights reserved.