Prevailion Launches New Capability for Eliminating Malware Blind Spots and Lowering Risk of Breach Across Cloud and Remote Workforce Assets

HOUSTON--()--Prevailion, a global leader in Compromise Breach MonitoringTM powered by counterintelligence, today announced the official launch of Omega, a new cybersecurity capability for enterprises and governments that exposes and validates previously undetected active malware compromises - including ransomware - across cloud deployments and remote workforce assets.

“As a growing remote workforce has fueled investment in cloud infrastructure, threat actors are using the ‘black box’ nature of these SaaS deployments to stay hidden from modern security tools and to proliferate ransomware and other attacks,” said Karim Hijazi, CEO of Prevailion. “The current methodology for monitoring and securing cloud workflows and remote workers paints an incomplete picture that limits an organization’s ability to improve its overall security posture and reduce its risk.”

Prevailion’s Omega technology addresses this fundamental visibility challenge in the cloud by accurately detecting malware that evades other security solutions. For the first time, security teams can now see beyond the cloud or ISP to track malware infections that leverage dynamic and obfuscated IP addressing. This rapid detection can successfully prevent the encryption stage of a ransomware attack from taking place, in addition to other significant events like data theft, even after an organization’s assets have already been infected.

Prevailion’s existing solutions are already unique in their approach to infiltrating and monitoring the attacker’s command-and-control (C2 or CnC) servers and communications to covertly expose malware infections from the threat actor’s point-of-view. They also do not require any physical presence or access to an organization’s network when helping to evaluate its immediate risk of damage or loss based on existing blind spots. This innovative approach empowers security teams to understand active risks and threats to their environments that have gone undetected and it allows them to continuously improve their security posture against future threats. In addition, Prevailion’s solutions can monitor existing or potential supply chain partners for changes in their security posture and provide visibility into an organization’s potential risk of a security incident.

Omega collects critical metadata from the malware payload, including:

-Victim IP address
-Destination IP address
-Port
-Protocol
-UUID
-UserAgent
-Username
-Password
-PC name
-OS type (Windows, macOS)
-C2 domain
-Malware type
-Threat actor
-Malicious beacon activity (total number and frequency)

Prevailion’s advanced solutions are powered by a global cloud-based sensor network, Prevailion’s Adversary Counterintelligence Team (PACT) and its unique command-and-control infiltration process. The ability to “follow” the malware from the attacker to the organization itself can provide an understanding of blind spots in current security coverage and an unprecedented level of insights into how and what the attacker is doing as part of its attack campaign. This type of malware visibility and validation is provided to security teams to reduce the time and effort it takes to identify the true nature and severity of the attack and accelerate immediate response to threats before full detonation.

For more details about how Prevailion’s Omega technology can help organizations accelerate their mean-time-to-detection (MTTD) and mean-time-to-response (MTTR), through greater visibility into active malware that stays hidden within an organization, visit: https://www.prevailion.com/omega-technology/

See an informative discussion between Jon Oltsik, Senior Principal Analyst & ESG Fellow ESG Research, and Prevailion’s Founder and CEO on “Using Counterintelligence to Monitor for Compromises and Accelerate Response” here: https://www.brighttalk.com/webcast/18938/499655.

ABOUT PREVAILION:

Prevailion is the world’s first Continuous Breach MonitoringTM company, transforming the way organizations approach compromise detection and breach prevention to drastically improve security operations. Through next-level tailored intelligence and a zero-touch platform, Prevailion provides a full view of confirmed “Evidence of Compromise'' (EOC) for customers and their partner ecosystems. Prevailion is funded by AllegisCyber Capital, DataTribe, Allstate Strategic Ventures, Legion Capital, Irongrey and Accenture Ventures. To learn more about Prevailion, visit www.prevailion.com.

Contacts

Michael Sias
Firm 19 for Prevailion
inquiry@firm19.com
954-361-3963

Release Summary

Prevailion’s Omega technology addresses a fundamental security challenge in the cloud by detecting malware that evades traditional solutions.

Contacts

Michael Sias
Firm 19 for Prevailion
inquiry@firm19.com
954-361-3963