Portnox Rapid Ransomware Response and Control Helps Organizations Quickly Recover from Attacks
Using full network visibility, Portnox monitors and disconnects infected devices during ransomware attacks, speeding up recovery time.
July 11, 2017 – Portnox, a market leader for network visibility, today announced “Rapid Ransomware Response and Control” as part of its on-premise and cloud-based Network Access Control (NAC) Solutions, Portnox CORE and CLEAR. In light of recent EternalBlue exploit attacks, known as the ‘Petya’ or ‘NotPetya’ cyberattacks, which targeted known vulnerabilities in the server message block protocol in Microsoft Windows, Rapid Ransomware Response and Control allows organizations of all sizes to quickly recover from ransomware and malware attacks.
Rapid Ransomware Response and Control allows for quick recovery by automatically disconnecting infected devices, as well as those devices that are prone to infection or missing necessary patches, to prevent the lateral spread of the ransomware throughout the network. By providing full visibility into all network devices, Rapid Ransomware Response and Control enables organizations to identify unpatched devices and those lacking anti-virus updates, and automatically install updates across the network. It also identifies unmanaged devices, which cannot be patched and pose significant risk – a major factor in the EternalBlue exploit attacks – automatically removing them to a firewalled or segmented network with limited network access.
Remediation capabilities include disconnecting or quarantining managed network devices that have been infected or are likely to be infected; activating a script for patching those machines, pushing a specific patch to update a machine, and segmenting or isolating infected devices into a separate part of the network with limited Internet connection and restricted access to sensitive company information. In addition, Rapid Ransomware Response and Control remotely disconnects ports on all network devices to control the lateral spread of the attack throughout the organization, and to minimize the IT resource burden of manually disconnecting network devices.
“Complete visibility into the network health of managed and unmanaged network devices can prevent an additional wave of ransomware attacks in the future, and that, if attacked, organizations can effectively control damage to their assets by initiating automated remediation measures across all relevant endpoints,” said Ofer Amitai, CEO, Portnox. “With Ransomware Response and Control, IT teams will release a sigh of relief knowing that, in the unfortunate event of a network breach, they have full visibility and control over the emerging and real threats to their network.”
Rapid Ransomware Response and Control is available now. For more information or to request a demo, visit: http://l.portnox.com/core-demo-request-1-0-0.
Portnox secures connected organizations’ corporate networks utilizing its next-generation network access control and management solutions. Portnox’s solutions manage every user, every device – including: Internet of Things (IoT), BYOD, mobile and managed devices – accessing the network, everywhere.
Founded in 2007, Portnox provides its global customers with a complete view of device and network visibility, reducing security risks and improving network control. Portnox offers two solutions – CORE for On-Premise NAC and CLEAR for cloud-based NAC – allowing companies to grow, optimize, and evolve their infrastructure while maintaining the upmost security and compliance. The company was recognized by Gartner as a pure-play security vendor of network access control solutions and is a recipient of the 2016 Global Frost & Sullivan Award for Competitive Strategy Innovation and Leadership, among other Security Industry Awards. Portnox has offices in the U.S. and in Europe.