Nettitude Blog

An insight into Deception Technologies

Posted by Jules Pagna Disso and Graham Sharples on Dec 6, 2017 4:53:24 PM

Proactive defense in cyber security is difficult to achieve. Nettitude‚Äôs research team investigated the use of deception technologies to gain further insight and intelligence of how they could be used to proactively protect an enterprise level environment. Its findings show that deception technologies are still immature. More effort needs to be invested into designing and engineering systems that can gather information in this area of research, and later transformed into actionable intelligence. 

world_map

The following observations were made during the research period:

1 . There is an overall poor deployment of deception technologies. It is also reasonably simple to depict them as deception technology.

2 . The deceptive elements of current deception technologies are weak. The exposed elements of deception technologies are weak and too repetitive.

3 . Most attacks on the Internet are NOT sophisticated.

4 . The quality of generic intelligence gathered by open source platforms is questionable and likely to create noise in security operation center environments.

5 . Deception platforms normally only capture the first stages of attacks.

6 . More mature deception technologies are needed to capture second and third stage malware.

7 . The attention is focused on the volume rather than the quality.

8 . Despite the current standard of deception technologies many attacks are still observed and reported. This translates to many automated attacks looking for the path of least resistance.

9 . Most deception technologies exposed directory browsing to the attacker as a sign of a vulnerable system. This led us to question whether espionage is the main concern of companies.

10 . We believe four government institutions are utilizing deception technologies within their infrastructure (Japan, Iran, Thailand and Cambodia).

Download the full report

Want to find out more? Download the full R&I report. 

Download Now 

About Nettitude

Nettitude is the trusted cyber security provider to thousands of businesses around the world. We stop at nothing to keep your data and business secure in an age of ever-evolving cyber threats.

Our experts use an award winning Threat Intelligence led approach that incorporates real-time data, ensuring that your company is protected at every stage of its journey.

Receive an update when we post!

Recent Posts