Deception Security Provider Attivo Now Has AWS Deployment | eWeek

Deception Security Provider Attivo Now Has AWS Deployment

Sep 2, 2015
2 minute read
eWeek content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More

Attivo Networks, which uses a “lure-the-bad-guys-in-and-trap-them” approach to securing IT networks, has always provided an on-premises, loaded-on-a-server product. Now it is scaling globally, thanks to new support from Amazon Web Services.
The Fremont, Calif.-based company on Sept. 2 launched what it calls “the industry’s first globally scalable deception technology solution” that detects inside-the-network threats across an enterprise and private and public clouds. It will do this first on the AWS cloud, by far the world’s largest cloud-service provider; deployment connections to other clouds are in the works.
Attivo’s BOTsink platform aims to detect threats within all network and data center environments. The new Attivo Central Manager within the platform provides a universal control console and centralization of threat intelligence for its global BOTsink deployments, the company said.
“To be effective, it’s critical that customers can use our solutions over a public cloud in addition to their enterprise network and private clouds,” CEO Tushar Kothari said. “The ability to manage global BOTsink deployments and threat intelligence from a central location are critical requirements for Attivo Fortune 500 customers.”
To supply a little context: Attivo uses a deception-type approach in its security—only the company expands it from only on-premises servers and storage to an entire network. The trap in a network set up with intentional vulnerabilities; its purpose is to invite attack, so that a hacker’s activities and methods can be studied and that information used to increase network security.
Deception schemes draw the attacker in, study his methodology, hook the bad actor on data that looks valuable, then slams the door and locks him up in quarantine within the system.
Key functionalities of Attivo BOTsink include:
–Advanced active deception is based on real operating systems and full services. For increased authenticity, customers are also provided the option to completely customize their BOTsink detection environment by importing a golden image of their current production machines.
–Going beyond basic detection, Attivo BOTsink will engage the BOT or APT and provides the option to open a port to the attacker command-and-control server to gain a deeper understanding of attack information.
–As the advanced threat intelligence dashboard manages alerts, IOC reporting can be sent to prevention solutions to shut down a current attack and prevent future attacks.
–The new Attivo Central Manager can configure, manage and view events from large deployed BOTsink solutions with a single console.
Attivo’s new appliance and VM offerings include: BOTsink 5100 with support for 100 VLANs and BOTsink 3200 for 32 VLANS. For more information, go here.

eWeek Logo

eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site's focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.