Addressing the Visibility Challenge With DeceptionCarolyn Crandell of Attivo Networks on Using Deception to Improve Detection
It's becoming increasing important to detect adversaries that have bypassed your security controls and moved laterally in your environment, says Carolyn Crandall of Attivo Networks, who describes the role deception can play.
See Also: AI's Impact on SOC Maturity
"Attackers can be in an out of your environment in 12 hours. Deception is able to put traps and lures into the network in attract the attackers inside the network into engaging so that defenders can quickly shut them down," she says.
In a video interview with Information Security Media Group at RSA Conference 2019 in San Francisco, Crandall discusses:
- Going beyond deflection to pick up tactics, techniques and procedures and indicators of compromise;
- Recommendations for implementing deception capabilities;
- Innovations and developments in deception.
Crandall is the chief deception officer and chief marketing officer at Attivo Networks.