CTERA adds Data Exfiltration Prevention

CTERA launches honeypot decoy capabilities to address data extortion and insider threats.

  • Saturday, 20th April 2024 Posted 1 year ago in by Phil Alsop

CTERA has enhanced its award-winning ransomware protection engine, CTERA Ransom Protect, with active protection against data exfiltration using honeypot techniques. This addition bolsters enterprises' defenses against insider threats and the latest extortion tactics employed by ransomware perpetrators.

Double extortion, a tactic that combines data exfiltration and encryption, has become a widespread method used by cybercriminals in ransomware attacks. Threat actors first exfiltrate sensitive information from their targets before launching the ransomware encryption routine, subsequently demanding a ransom payment to regain access to the encrypted assets and threatening to publicly expose the stolen data if the demand is not met promptly.

CTERA Ransom Protect is an AI-powered cyber defense engine integrated into the CTERA global file system, providing zero-day protection against widespread ransomware attacks. The strong demand for Ransom Protect contributed to CTERA's record-breaking results in 2023, solidifying the company's position as a leader in Cyberstorage and earning it a leadership position in GigaOm’s Sonar Report for File-Based Primary Storage Ransomware Protection.

Now enhanced with honeypot capabilities, Ransom Protect utilizes the strategic deployment of decoy files within the organization's file system and enables CTERA to identify and stop unauthorized access or attempts at data theft, effectively neutralizing threats before significant damage can occur.

"Data exfiltration poses a severe risk to organizations, as threat actors can leverage stolen sensitive information for extortion, causing immense financial and reputational damage," said Oded Nagel, CEO of CTERA. "With our new honeypot functionality as part of CTERARansom Protect, we are providing our customers robust active defense against these pernicious attacks, ensuring the protection of their valuable data assets."

Key features of CTERA Ransom Protect include:

Data Exfiltration Prevention: Decoy files enable real-time detection and blocking of data exfiltration attacks.

Real-time AI Detection: Advanced machine learning algorithms identify behavioral anomalies suggesting fraudulent file activity, and block offending users within seconds.

Zero-Day Protection: Does not rely on traditional signature update services.

Incident Management: Administrator dashboard enabling real-time attack monitoring, comprehensive incident evidence logging and post-attack forensics.

Instant Recovery: Near-instant recovery of any affected files from snapshots that are securely stored in an air-gapped, immutable cloud object storage effectively thwarting any manipulation attempts by malicious actors.

One-Click Deployment: Single-click feature activation on CTERA Edge Filers with latest version release.

"Given the escalating prevalence and severity of data exfiltration attacks, we believe advanced cybersecurity features provide significant value and tight integration into storage systems is a top priority," said Whit Walters, analyst at GigaOm. "CTERA's native integration of data exfiltration protection within their edge file services platform represents an important step in this direction. By baking advanced exfiltration defenses directly into their storage architecture, CTERA ensures organizations can proactively safeguard their vital data assets against this insidious threat vector." 

Compliance Scorecard joins Pax8 Marketplace

Posted 21 hours ago by Phil Alsop
Compliance Scorecard™, a Compliance as a Service (CaaS) platform provider, has partnered with Pax8 to help managed service providers (MSPs)...

OVHcloud introduces Data Platform

Posted 21 hours ago by Phil Alsop
An all-in-one, ready-to-use solution to unleash the full value of data.

Kiteworks slashes storage costs

Posted 21 hours ago by Phil Alsop
Integration with Wasabi hot cloud storage delivers cost-effective cloud storage with enterprise-grade security and compliance.

Lenovo unveils new data storage solutions

Posted 21 hours ago by Phil Alsop
Next generation Lenovo AI-optimised storage unleashes the power of data at any scale with 21 new ThinkSystem and ThinkAgile models for enterprise AI,...
Netwrix has released its annual global 2025 Cybersecurity Trends Report based on a global survey of 2,150 IT and security professionals from 121...

Tray.ai launches ITSM Agent

Posted 21 hours ago by Phil Alsop
Automates IT support to cut costs, reduce human-handled tickets by 75%, and ensure enterprise governance and control.

Cynomi secures $37m in Series B funding

Posted 21 hours ago by Phil Alsop
Latest investment for leading AI-powered vCISO platform for MSPs and MSSPs to drive product innovation and growth across service provider ecosystem.

Veeam launches strategic framework

Posted 21 hours ago by Phil Alsop
New global research from Veeam and McKinsey reveals most organizations vastly overestimate their resilience—Veeam’s new Data Resilience Maturity...