Products
- Products
  
  Platform
  ShadowPlex Advanced Threat Defense
  Deception for early detection of cyber threats with precision and speed
  
  ShadowPlex Identity Protection
  Visibility, management and protection of identity stores and attack paths
  Acalvio Active Defense Platform
  Comprehensive and Award-winning Distributed Deception Platform
  
  What is Active Defense?
  Active defense detects and diverts attacks.
  
  Why do I need Acalvio Active Defense?
  Active Defense deceives and disrupts attackers.
Solutions
- Technology Solutions
  
  Industry Solutions
  Early Threat Detection
  Detect cyber threats early in the attack lifecycle to prevent adversary breakout
  
  Identity Threat Detection & Response
  Detect identity threats with precision and protect the identity architecture
  
  OT Security
  Protect OT environments from cyber threats with an easy-to-deploy and non-intrusive solution
  
  Red Teaming
  Strengthen defenses to detect red team activities
  
  Threat Hunting
  Active threat hunting to confirm latent threats and gain visibility to attacker TTPs
  
  Ransomware
  AI-driven deception to protect against known and zero-day ransomware variants
  
  Honeytokens for CrowdStrike
  Enterprise-scale honeytokens to protect against current and evolving identity threats
  
  Active Directory Protection
  Visibility to AD attack surface and detection of AD attacks
  
  Zero Trust
  Advance Zero Trust maturity through improved cyber visibility
  
  Insider Threats
  Unmask hidden dangers. Cyber deception for high-fidelity insider threat detection
  Public Sector
  Targeted solution for protecting Federal agencies in conformation with NIST and CISA recommendations
  
  Financial Services
  Transform Financial Cybersecurity with Innovative Cyber Deception and Active Defense
  
  Healthcare
  Active defense solutions thwart healthcare attacks before they can inflict real damage.
Resources
Partners
Company

SCHEDULE A DEMO

“Amazon Firestick” is to “VCR”, as “Deception” is to _________

by Team Acalvio | June 27, 2019

Complete the Analogy:

“Amazon Firestick” is to “VCR”, as “Deception” is to _________.

Correct Answer: “Honeypot”

Remember your SAT or ACT exams with the analogy questions?

If so you probably got this one right. For those of us old enough to remember, Video Cassette Recorders were used to record TV programs. At least on a good day that is, because a lot of things had to come together: You had to have the program schedule and channel right, make sure the tape was in the correct place and the record tab present, check the cables, and worst of all, set the recording parameters correctly. Compare that with a Firestick, to which you can just say “Play Game of Thrones!” and you’re in business. Roughly the same goal, but a whole lot easier and more reliable.

Modern Deception solutions are analogous to the Firestick as compared to the VCR

When compared with honeypots, modern Deception solutions are analogous to the Firestick as compared to the VCR. They both can detect adversaries, retard their attack, and provide intelligence on the attacker’s techniques and motives. But trying to operationalize honeypots at scale is extremely difficult, and even if you can pull it off, it’ll cost you a fortune in staff time – time that could be much better used.

Deception solutions on the other hand take care of the hard work:

Creation and distribution of assets (decoys, breadcrumbs, lures)
Ongoing matching of asset profiles with production environment
Collection and presentation of telemetry and indicators of compromise
Cost effective Deployment at scale

Advanced Deception solutions are dynamic

Crucially, advanced Deception solutions are dynamic. That is, they continuously modify the attributes of the deception assets based on changes observed in the production environment, so that they stay credible in the eyes of an adversary. Trying to do that by hand is virtually impossible, and it’s crucial because these days IT environments are always changing.

Implementing a proper Deception offering frees up staff to work on what they should be working on: evaluating high-fidelity events, incident response, threat hunting, policy, and so on. So the next time you’re asked to explain the difference between Deception and honeypots, just ask them if they remember taking their SATs, and it should be an easy conversation!