Zscaler Adds New Zero Trust Network Access Capabilities

Missed a session at the Data Summit? View on demand here.

Zscaler today announced the introduction of several new Zero Trust Network Access (ZTNA) capabilities, including improved lateral motion detection and new functionality to prevent compromised users from exploiting a vulnerability.

The updates are introduced for Zscaler Private Access, which secures access to a company’s private applications. The product uses Zscaler’s Zero Trust Exchange platform, which combines a cloud-based secure web gateway with cloud-delivered ZTNA.

The updates “can provide security teams with much more reliable signals to weed out and contain malicious actors before they can do permanent system damage,” Tony Paterra, senior vice president of emerging products at Zscaler, told VentureBeat in an email. .

Integrated deception

The new capabilities include integrated deception, which Zscaler says is a first when it comes to providing deception-based security, within an architecture without trust, to detect sideways movement.

Zscaler is the first Security Service Edge (SSE) offering “capable of intercepting the most advanced adversaries and preventing sideways movement with built-in decoys and automated containment on the Zero Trust Exchange and external security platforms,” ​​said Paterra.

Deception as a possibility in SSE is a “compelling solution to address the compromised user problem, where a sophisticated attacker has stolen valid credentials or taken over a legitimate system,” he said.

For example, in ransomware attacks, a common technique is to spread sideways across the organization to encrypt file shares before demanding payment. With deception, “we can create an ‘early warning system’ by introducing decoys that can be used to block access to private applications for a compromised user, preventing the attack and causing no further harm to the compromised user,” Paterra said. .

The integrated deception capability also helps reduce alertness with “highly reliable” alerts generated by the system’s decoys, Zscaler says.

Private app protection

A second new capability unveiled is private app protection, which aims to prevent attackers from exploiting vulnerable private apps. A key feature of the solution is in-line inspection of private app traffic, Zscaler said.

Zscaler Private Access has already reduced the attack surface by making vulnerable services invisible to the Internet, Paterra noted. But the addition of private app protection means “we are now able to go one step further and prevent a compromised user from exploiting that vulnerability,” he said.

In addition, Zscaler announced that it is introducing privileged remote access for industrial IoT and OT systems, beyond users and workloads.

“In light of heightened geopolitical tensions, we want to ensure that governments and private companies can keep these types of IIoT/OT systems secure and responsive to customer demand for remote management options based on a trustless architecture” , said Paterra.

Really zero trust

While zero trust has become a “buzzword” and misapplied by some vendors, true zero trust means connecting users directly to applications without going over the network, said Jay Chaudhry, founder and CEO of Zscaler in a recent interview with VentureBeat.

An illustration of Zscaler’s approach can be seen in how it protects customers from exploiting the remote code execution vulnerability in Apache Log4j, Chaudhry said.

The flaw is the “most dangerous vulnerability” imaginable, but Zscaler customers have benefited from the Zero Trust Exchange keeping their applications hidden, Chaudhry said.

“I had some clients reach out to me and say, ‘Thank God I’m hidden behind Zscaler. I need to patch my systems, but I’m not sweating. I have time to patch them because they can’t be discovered and viewed over the internet,” he said. “So the faster the market embraces zero trust, the safer we’ll be.”

In February, research firm Gartner placed Zscaler in the “Leaders” quadrant in the inaugural Magic Quadrant for Security Service Edge. Only two other vendors, the SSE businesses of McAfee Enterprise (now known as Skyhigh Security) and Netskope, made it into the SSE Leaders Quadrant.

VentureBeat’s mission is to be a digital city square for tech decision makers to learn about transformative business technology and transactions. Learn more

This post Zscaler Adds New Zero Trust Network Access Capabilities

was original published at “https://venturebeat.com/2022/03/22/zscaler-adds-new-zero-trust-network-access-capabilities/”