Cyberseer benefits from added visibility of virtual machine traffic detected via the Darktrace Enterprise Immune System.
Threat Analysts at Cyberseer are powered by the Darktrace technology, developed at the University of Cambridge, to detect in-progress cyber threats, including advanced persistent threats (APTs) and insider threats. The release of Darktrace vSensors seamlessly extends the self-learning, threat detection capability of the Enterprise Immune System into virtualised environments, thus enhancing our Analysts’ ability to detect subtle and long-running anomalous activity within the network, both on premise and in the cloud.
The Darktrace vSensor is capable of monitoring 100% of traffic between virtual machines and can be deployed alongside virtualised switches with a minimum impact on hardware performance. The virtual appliance is configured to serve as a SPAN (Switched Port Analyser) for the virtual network switch, enabling the intelligent capture of every single packet transferred between separate virtual machines (VMs). Only relevant metadata is extracted, with 1% of the original raw network traffic sent sufficiently and securely to the master Dartktrace appliance for further investigation.
The vSensors are an essential component for organisations with multiple virtual machines in owned hardware servers, and organisations with numerous remote locations. It provides Analysts with the ability to see data moving within these locations and strengthens visibility of all digital interactions.
- Easy installation.
- Captures 100% of inter-VW traffic.
- Extracts only relevant metadata.
- Optimises disk space by storing packet capture on a rolling basis.
- Minimal impact on server performance.
- Fully scalable.
Cyberseer Managed Service for Darktrace
Cyberseer’s threat detection managed service is driven by a team of expert Analysts. They leverage the Darktrace technology to detect threats in your environment. Suspicious activity is interpreted through a combination of expert human analysis and investigation of behavioural threat data. The essence of the service is understanding if a surfaced anomaly is worthy of investigation and therefore a real threat in the context of your organisations environment. Cyberseer’s expertise enables companies to gain visibility across their environment and understand the threat landscape.