Vectra has announced broader and deeper cloud capabilities to track and link accounts and data in hybrid environments.
According to the company, current security approaches lose visibility when environments expand to the cloud where users leverage multiple different accounts and may access resources from shadow IT devices. Historically users and hosts were on-premises and tightly controlled. Vectra’s enhanced capabilities can detect and stop threats across the entire network, tying together attacker activities and progression between cloud, hybrid, and on-premise networks.
The increasing number of remote workers, combined with the number of IoT devices accessing corporate and cloud networks, make both traditional network security solutions, including intrusion detection and endpoint protection, blind to activity and data in cloud applications. The rise of targeted credential-based attacks negate email security, multifactor authentication (MFA), cloud access security brokers (CASBs), and other threat-prevention approaches normally established to protect users because these malicious account-based attacks look like legitimate user actions.
Vectra empowers security teams with continued analysis of how users are accessing, using and configuring cloud services based on logs from SaaS, and account usage from Identity Providers (IdPs) like Microsoft Azure AD. Vectra ties together all host and account interactions as they move between cloud and on-premise environments in one consolidated view, to drastically reduce the overall risk of a breach.
This announcement comes on the heels of Vectra’s release of Cognito Detect for Office 365 earlier this year, the rapid adoption of which led to an accelerated effort to deepen and enhance this service. By seamlessly integrating with SaaS applications like Office 365, IaaS providers, IdPs and cloud virtualization platforms, Vectra is giving visibility into who and what is accessing data, regardless of how and where.