In a recent interview with David Brown, the driving force behind strategic alignment at our organization, and CounterCraft partner Bosch CyberCompare, we delved into the latest advances in threat intelligence solutions, focusing on the power of deception technology to deliver specific, actionable intel in real-time. With a wealth of experience in international sales management across various industries, including cybersecurity and energy, David’s expertise offers invaluable insights into navigating complex business landscapes. His innate ability to swiftly identify core issues and craft inclusive solutions makes him a standout leader in the field.
Join us as we explore David’s perspectives on leveraging deception technology to stay one step ahead in today’s evolving threat landscape. From its strategic implementation to its impact on business innovation, our conversation promises to shed light on the dynamic intersection of cybersecurity and pioneering technology, offering actionable strategies for staying ahead in an increasingly competitive market.
First, in your words, who is Countercraft and what’s your product?
CounterCraft provides specific, actionable threat intelligence in real time using deception technology. Unlike comparable technology, which takes up to 270 days to provide threat intelligence that requires an analyst to determine if it’s relevant or not, CounterCraft delivers intelligence generated by your adversaries, in real time, that enables you to implement remediation immediately.
Deception technology is not yet a household name in the context of cybersecurity. Why is it becoming a must-have from your point of view?
Deception provides actionable threat intelligence in real time, with zero false positives, connected to your existing systems to allow automated remediation. It can be deployed across any network, on premise, in the cloud, across air-gapped networks and at speed.
What is a misconception people have about cyber deception?
That it is just honeypots. Our solutions go far beyond the 1980s term honeypot, creating sophisticated systems that the world’s top governments and businesses use.
Read our blog about exactly how deception technology goes way beyond the honeypot >>>
We can build a deception farm outside your network that is representative of an organization like yours, and then advise in real time, in a machine-readable format, where your attackers are coming from, who they are and what they are attempting to do on a system like yours.
Or we can divert an adversary away from your network and into a “digital twin” deception environment where we can study their behavior and report back. We then deliver actionable intelligence in seconds that will tell you who they are, where they have come from, where they have been previously on your network, and what scripts they have run while in the deception environment. It is possible to isolate your adversary in this environment for months while you study their behavior in safety — or collect all the information you need to generate a CVE in less than one business day.
More than 90% of our solutions are delivered in 30 days or less, unlike comparable solutions that can take 12 months to deploy, and even in that time only reaching 80% of your network, leaving the typically valuable systems in the remaining 20% vulnerable.
Do you have a recent result your clients have had that has impressed you and works as an example for your solution?
Yes, we worked with Red Eléctrica, the Spanish utilities company, and they contracted CounterCraft with the goal of detecting threats before they breach the network. Our team created a physical communication rack that mimicked their real electrical substation. Within just a few minutes after connecting the substation to the Internet, attacks began. However, these brute force attempts against the VNC, switch telnet and the web portal were all noise coming from automated access attempts, which CounterCraft was able to filter out. In less than two weeks, a high priority alert came through, easy to distinguish from a low-level automatic attack thanks to CounterCraft’s sophisticated technology. They said our technology was the best way they have to know the attacks they might be under and prevent them. That case study is available here.
What is the most popular use case for your technology?
We have 40+ use cases for our technology, with tailored campaigns ready to go. That said, we provide unique-to-market solutions for impossible issues like insider threat, lateral movement, and cloud network security.
Which companies should look into your solution and how to get in touch with Countercraft the best way?
We offer solutions to the toughest problems faced by industries like OT, manufacturing, government, retail, telecoms and healthcare. Any company with a dedicated security team should be employing deception. To reach us, please contact us on our website.