We use cookies for our website. By continuing to browse the site, you agree to our use of cookies.

Home Blog News Fidelis Cybersecurity Active XDR platform extends to Open XDR

Fidelis Cybersecurity Active XDR platform extends to Open XDR

Fidelis Cybersecurity, the innovator of Active eXtended Detection and Response (XDR) solutions trusted by Fortune 100 companies and government organizations worldwide, today announced a more robust and open XDR platform with enhancements to its leading Network Detection and Response (NDR) and Deception solutions. Today’s enhancements include new integrations, a more powerful CommandPost and faster network sensor in Fidelis Network®, and expanded cloud capabilities in Fidelis Deception®. Both products are available as standalone offerings or as part of Fidelis Elevate®, the Active XDR platform. Fidelis Elevate delivers advanced threat detection and response across the cloud, network, and endpoints, as well as deception technology, deep session inspection, decryption, and data loss prevention to help security teams find and prevent threats faster.

Fidelis Network

Fidelis Network v9.5 improves the speed, context, and accuracy of network threat detection and response with a new, more powerful Fidelis CommandPost and a 20G sensor that delivers twice the throughput with half the resource consumption of a 10G sensor. The more powerful CommandPost can store more data to support retrospective queries on archived data. This feature is critical for quickly conducting a damage assessment in the event of a suspected breach to understand how the attacker initially entered the system, when the attack occurred, and what data and services were compromised.

In addition, Fidelis Cybersecurity has expanded its own integration ecosystem. In addition to Gigamon and other vendors, Fidelis Network can now pull data from even more leading third-party platforms, helping security analysts consolidate disparate vendor data, correlate events across vendor environments, and track adversary movement across the cloud, endpoints, and network.

As an essential part of the open XDR platform, Fidelis Network works with these leading platforms to help security teams find and respond to threats anywhere in the network faster and easier:

  • Zscaler – Zscaler offers a Security Service Edge (SSE) architecture that brings network security to the edge. Integration with Fidelis Network allows you to receive and analyze all data generated by Zscaler Internet Access (ZIA), improving threat hunting and alerting processes.
  • DEVO – Fidelis Elevate analyzes all data across networks, endpoints, false positive data, cloud, data center and hybrid environments. Integrating Fidelis data and detection with Devo’s native cloud-based security logging and analytics systems empowers security teams to find and correlate threats across the enterprise, including data from firewalls, web gateways, email gateways, and more.

Fidelis Deception

Version 9.5 of Fidelis Deception adds cloud traps for multi-cloud environments to detect attacks on an organization’s cloud assets. These features include:

  • Vulnerability management on a trap: Allows security teams to provision traps with specific vulnerabilities (e.g. Log4j) to catch adversaries looking for vulnerable cloud assets.
  • Extended support for RealOS-based Decoys on virtual machines: Provide out-of-the-box, standard images or ISO files on the Decoy Server to run custom applications supporting up to five RealOS Decoys on a single Decoy Server running in a virtual machine (VM) with multiple IP addresses for each RealOS Decoy.
  • ARP MITM Detection: Easily detect and respond to man-in-the-middle attacks where attackers spoof ARP responses.
  • Amazon Web Services (AWS) Breadcrumb Enhancement: Adding additional dedicated AWS objects as breadcrumbs to attract attackers to the trap.

Fidelis Deception v.9.5.1, available in Spring 2022, adds container support and functionality:

  • Support for containerized Decoy Server: Support for AWS on Dockers/Kubernetes, which provides additional deployment options for Decoy Server. (Users can deploy Decoy Server directly on AWS).
  • Decoy containers developed by the client: Upload custom containers and other container applications to the Decoy Server to detect attackers attempting to exploit those containers.

About Fidelis Cybersecurity

Fidelis Cybersecurity fights the full spectrum of cybercrime, data theft and espionage. A leading provider of threat detection, investigation, and response solutions, Fidelis delivers complete visibility in hybrid environments, automates threat and data theft detection, enhances threat hunting capabilities, and optimizes incident response with context, speed, and accuracy. Fidelis is trusted by 1000’s of global companies and governments as the last line of defense.

The Fidelis Elevate® platform gathers informative metadata from across the threat landscape and aggregates this data for real-time and historical analysis, providing security teams with a platform to effectively find threats in their environment.

Sounds too good to be true? Learn more about Fidelis solutions. Wise IT specialists will consult and help you with the selection of information security solutions depending on your needs. Call us at +38 (044) 277-23-23 or send us an email at info@wiseit.com.ua

Do you want to use advanced cybersecurity solutions? Wise IT is your reliable partner in the world of digital transformation!