We live in times where security risks are lurking at every corner. It is utmost essential for every organization to stay safe and have a right plan to secure itself against an attack. It all starts with the right defense system with an accurate and elaborate threat prevention system. With the number of adversaries rising rapidly, it has become the need of the hour to stay alert and protected to the maximum potential.
Cybereason is the company that is rewriting the rules on how organizations protect themselves against rapidly evolving adversaries. The risks that every company is facing in this threat-infested environment require understanding the adversary and attack landscape. Ever since its foundation in 2012, the technology at Cybereason has stopped the world’s most advanced cyber attacks. The company is confident in harboring even greater ambitions.
Solutions that Defend
“We are here to protect our customers by exploiting their adversaries’ weaknesses,” explains Lior Div CEO and co-founder of Cybereason. “The layers of protection a company has are irrelevant since adversaries will always find a way to bypass them.” But Cybereason has an agenda for its defense technology. It’s certain that after infiltrating an organization, the attackers are vulnerable. Their activity offers an opportunity to discover the attack. This is why it has developed an endpoint detection platform that uses this insight to empower security teams.
The best part of Cybereason is that it instantly tells the companies if they are under attack, instead of hiding it within. Next, it analyzes the attack’s impact and how to immediately stop the threat. The platform finds a single component of an attack and connects it to other pieces of information to reveal an entire campaign and shut it down. Even the most talented analysts would struggle with detecting a threat and quickly build a complete attack story. But, Cybereason simplifies this process.
That’s not all. “The military is part of our heritage. Many of our employees served in the Israel Defense Forces’ 8200 unit, an elite group that specializes in cybersecurity, giving them extensive experience with hacking operations,” proudly notes Lior. “We are applying the military’s perspective on cybersecurity to enterprise security.”
Deep Hunting Platform
The Cybereason Deep Hunting Platform delivers endpoint detection and response (EDR), next-generation antivirus (NGAV), managed threat hunting, and threat intelligence — all in one solution and one single lightweight sensor. Built using Cybereason's proprietary cybersecurity data analytics architecture, the platform focuses on collecting and analyzing behavioral data and correlating disparate data points to identify malicious operations and facilitate immediate action.
Hunting the threats
Cybereason starts the hunting campaign immediately and ensures that other operations don’t slow down. Sensors on every endpoint silently monitor the entire environment without impacting user productivity. “Our technology starts hunting immediately, no rule-writing required. And we deploy in as little as 24 hours,” says Lior.
Next, it correlates events to find patterns. All of the data from the sensors are constantly relayed to the Cybereason Hunting Engine. It remembers, relates, and connects past and present activities and continuously grows stronger, smarter and builds better effectiveness. By using machine learning algorithms, the Hunting Engine recognizes behaviors that even the most sophisticated AV can’t locate. This includes even the file-less malware and lateral movement. It connects seemingly unrelated or benign events to reveal the full scope of the attack.
Cybereason has a unique hunting engine which is not only smart, but also works hard and fast. “Our custom-built in-memory graph is the heart of the Cybereason Hunting Engine. It interrogates every endpoint by asking 8 million questions per second, 24/7 to uncover malicious tools and tactics,” elaborates Lior. Moreover, the Response Interface presents the end-to-end malicious operation or Malop™. Clients can delve deep into individual processes, discover how the adversary gained access, and remediate with precision. With less time spent on investigation and response, the top talent can focus on higher-level work.
Cybereason believes that security is not mysterious. It believes that security encompasses more than laptops, servers, and malware. Security is a complex operation run by people who use a variety of techniques to achieve specific goals. And so, Cybereason started off with endpoint detection and response. But today, it has a bigger objective and that is to protect it all.
The technology by Cybereason works on more than just traditional hardware. “We envision protecting wearables, cars, and Internet of Things devices,” says Lior. “In other words, anything that has a processor and is connected to the Internet!” Although this may sound like a lofty goal, Cybereason is confident as it has bold ideas. Cybereason is changing the landscape, returning power where it belongs with the defenders.
Meet the Champion
Lior Div is the CEO and Co-Founder of Cybereason and is an expert in hacking operations, forensics, reverse engineering, malware analysis, cryptography, and evasion. Previously, Lior served in unit 8200 of the Israeli Intelligence Corps as a commander of a cybersecurity team, where he received a Medal of Honor. Prior to co-founding Cybereason, Lior founded a cybersecurity services company that provided services to Israeli government agencies.
“To us, security is not mysterious and encompasses more than laptops, servers, and malware. It is a complex operation run by people who use a variety of techniques to achieve specific goals.”
“The Cybereason Deep Hunting Platform doesn't simply secure your data, it leverages your data to secure.”