Offensive Defensive Strategies

Offensive Defensive Strategies against all odds (ODS) is the approach which is implemented with the thought process of Tactic Techniques and Procedures used by the Adversaries. Deception technology is a fast-emerging cyber security defense. It can detect, analyze, and defend against zero-day and advanced attacks, often in real time. They are automated, accurate and provide insight into malicious activity within internal networks which may be unseen by other types of cyber defense. Deception technology enables a more proactive security posture by seeking to deceive the attackers, detect them and then defeat them, allowing the enterprise to return to normal operations. Moving Target Defense (MTD), on the other hand, is used to deceive adversaries in real time. The topology of the network can be dynamically changed without affecting generator and load dispatch, which will minimize the risks of data integrity attacks.

Offensive Cyber Security strategies is an important Defensive Strategy in the new age Digital Security. The modern-day computing systems are quite defenseless against the unknown; unknown- due to their static nature. Adversaries have been able to initiate and execute attacks as they have ample time to exploit the gaps and vulnerabilities in the systems.

Infopercept being a leading Managed Security Services Provider in the world, has an integrated approach to address this issue. The ODS Integrated solution has revolutionized the ways in which defense technology works. Due to the dynamic nature of change that occurs across multiple systems, there is a certain level of uncertainty which hampers the progress of the attackers. This approach narrows down the window of opportunity for the cyber criminals which leads them to try harder and invest more time and resources. On the other hand, the integrated solution also deceives the attackers by the distribution of a collection of traps and decoys across your organization’s systems infrastructure, in order to replicate legitimate assets. This way the cybercriminals would be fooled by enticing them to consider certain components in the network as legitimate for them to attack, which isn’t the case. MTD uses a polymorphic technique that morphs or distorts the memory space in such a manner, that it throws the adversaries off the scent.

The types of suspicious activities detected by this integrated approach are;

• Credential Theft
• Lateral Movement
• Hacking into directory systems
• Man-in-the-middle
• In Memory Attack
• File Less Attacks
• Ransomwares
• Access to sensitive information
• Geo-fencing

The two integrated technologies are called Moving Target Defense and Deception Technologies.