Exeon Analytics is a Swiss-based cybersecurity company that provides ExeonTrace, an industry-leading Network Detection and Response (NDR). ExeonTrace detects attackers compromising corporate networks and provides a bird’s-eye view of network activities.
What Problem Are You Trying to Solve?
Advanced cyberattacks such as APT and ransomware attacks have become a major threat for companies across industries. Traditional security solutions such as firewalls, anti-virus software, IPS, and IDS are no longer enough to stop modern threats alone.
This is because these traditional solutions typically aim to detect attacks by comparing observed activities with databases of known malicious behaviour, so called malware signatures or IOCs.
This kind of detection can be sufficient to detect off-the-shelve malware. However, more advanced attackers, like the ones conducting ransomware attacks against corporates, actively check if their malware is detected by such signature-based tools or IOCs and change their malware as soon as this is the case. Thus, the defenders are always one step behind.
ExeonTrace is an innovative Network Detection & Response solution that allows enterprises to improve threat detection by immediately recognising and responding to suspicious activities before they harm corporate networks.
How Are You Solving That Problem?
In contrast to traditional security solutions, ExeonTrace uses machine learning to learn how normal network activities look like and detects cyberattacks primarily by identifying behaviour that deviates from the learned profiles.
This allows ExeonTrace to identify yet unknown cyberattacks. Parts of these models are pre-trained by Exeon to detect possibly already ongoing attacks immediately after deployment (supervised ML), others learn the specific behaviour of network devices over time (unsupervised ML).
Leading clients across industries rely on ExeonTrace because of the following key features. ExeonTrace
- uses supervised and unsupervised ML technologies to detect unknown and advanced threats such as ransomware and APT.
- intuitively visualizes the IT infrastructure and data flows, including cloud applications.
- can also detect supply chain attacks such as the recent Sunburst hack.
- can integrate with existing security solutions, such as SOAR, SIEM, and a CMDB for enhanced detection capability and coverage.
- consumes significantly less network bandwidth than traditional NDR solutions because it uses lightweight log data instead of complete network mirroring.
- analyses metadata and is therefore not affected by the increasingly encrypted network traffic.
- is based on a proprietary technology that was developed in more than 10 years of academic research at ETH Zurich.
- is a pure software-based solution that can be rapidly deployed on-premise or in the cloud.
How Has the Pandemic Impacted Your Company?
Since the start of the COVID19 pandemic, enterprises were forced to enable work-from-home models, which accelerated the adoption of cloud computing technology across all industries. ExeonTrace effectively facilitates those new working models by providing complete visibility over enterprises’ network traffic, including cloud applications.
Where Do You See Your Company Going In 5 Years?
We will continue making ExeonTrace a superior NDR solution for detecting and fighting the most advanced cyber threats and are aiming at becoming Europe’s leading NDR solution within the next 5 years.
What Is the Next Big Challenge in Information Security?
Summarising multiple client conversations, the increased encryption of network traffic, along with the growing adoption of cloud technology, is becoming a major challenge for security teams.
This is where we see a great opportunity for the use of our NDR solution, as it relies on metadata analysis and is therefore not affected by encrypted network traffic.
Additionally, ExeonTrace allows the integration and correlation of multiple data sources including cloud log data, allowing clients a complete visibility over the entire IT environment to foster detection and response capabilities in one single dashboard.
How Do People Get Involved/Buy into Your Vision?
ExeonTrace comes with many benefits for overwhelmed security teams, as it allows security analysts to focus their efforts on managing their daily work while leaving ExeonTrace do the hard work in detecting threats across an enterprise ecosystem.