Portnox ransomware response solution disconnects infected devices during attacks
July 11, 2017 Portnox, a market leader for network visibility, today announced “Rapid Ransomware Response and Control” as part of its on-premise and cloud-based Network Access Control (NAC) Solutions, Portnox CORE and CLEAR. In light of recent EternalBlue exploit attacks, known as the ‘Petya’ or ‘NotPetya’ cyberattacks, which targeted known vulnerabilities in the server message block protocol in Microsoft Windows, Rapid Ransomware Response and Control allows organizations of all sizes to quickly recover from ransomware and malware attacks.
Rapid Ransomware Response and Control allows for quick recovery by automatically disconnecting infected devices, as well as those devices that are prone to infection or missing necessary patches, to prevent the lateral spread of the ransomware throughout the network. By providing full visibility into all network devices, Rapid Ransomware Response and Controlenables organizations to identify unpatched devices and those lacking anti-virus updates, and automatically install updates across the network. It also identifies unmanaged devices, which cannot be patched and pose significant risk – a major factor in the EternalBlue exploit attacks – automatically removing them to a firewalled or segmented network with limited network access.
Remediation capabilities include disconnecting or quarantining managed network devices that have been infected or are likely to be infected; activating a script for patching those machines, pushing a specific patch to update a machine, and segmenting or isolating infected devices into a separate part of the network with limited Internet connection and restricted access to sensitive company information. In addition, Rapid Ransomware Response and Control remotely disconnects ports on all network devices to control the lateral spread of the attack throughout the organization, and to minimize the IT resource burden of manually disconnecting network devices.
“Complete visibility into the network health of managed and unmanaged network devices can prevent an additional wave of ransomware attacks in the future, and that, if attacked, organizations can effectively control damage to their assets by initiating automated remediation measures across all relevant endpoints,” said Ofer Amitai, CEO, Portnox. “With Ransomware Response and Control, IT teams will release a sigh of relief knowing that, in the unfortunate event of a network breach, they have full visibility and control over the emerging and real threats to their network.”
Rapid Ransomware Response and Control is available now. For more information or to request a demo, visit: http://l.portnox.com/core-demo-request-1-0-0/.
Portnox helps connected organizations secure corporate networks by utilizing its next-generation network access control and management solutions. Portnox solutions manage any Internet of Things (IoT) connected devices or any user devices accessing the network, including remote locations and whether on mobile, BYOD or managed devices.
For over a decade, Portnox has been providing satisfied customers worldwide with a complete view of device and network visibility, reducing security risk and improving network control. Portnox offers two solutions – CORE for On-Premise NAC and CLEAR for cloud-based NAC - allowing companies to grow, optimize, and evolve their infrastructure while ensuring security and compliance. The company is recognized by Gartner as a pure-play security vendor of network access control solutions and is a recipient of the 2016 Global Frost & Sullivan Award for Competitive Strategy Innovation and Leadership. Portnox has offices in the U.S. and in Europe.