Reducing the Attack Surface with Privilege Security on the EndpointCyberArk Endpoint Privilege Manager now helps organizations detect and block credential theft attempts by malicious users and applications including Windows credentials, remote access application credentials and those credentials stored by popular web browsers such as corporate network and cloud applications. CyberArk is also able to block hash harvesting at the endpoint to prevent Pass-the-Hash, an attack leveraging stolen credentials.New targeted behavioral analytics are based on cyber threat detection technology acquired from Cybertinel last year, combined with continuous research from CyberArk Labs focused on identifying common privileged account-based attack patterns and malware behavior to further reduce the risk of emerging threats. These new capabilities complement enterprise security best practices for hardening the endpoint, including:
- Removing local administrator credentials: CyberArk automates the removal of local administrator rights to reduce risk while alleviating pressure on help desk support, and minimizing impact on user activity by seamlessly elevating privileges for authorized applications or tasks.
- Enabling flexible application control: CyberArk application control capabilities, featuring automatic policy creation, allow organizations to prevent malicious applications from executing and utilize greylisting to run unknown applications in a restricted mode.
With CyberArk Endpoint Privilege Manager as part of the CyberArk Privileged Account Security Solution, customers gain a complete, centralized solution to protect, monitor, detect, alert and respond to privileged account activity. Additionally, the CyberArk Discovery and Audit (DNA) tool v7.0 helps organizations broaden their visibility into privileged accounts and privileged account risks by extending discovery capabilities into public cloud environments and uncovering credential-harvesting risks at the endpoint.AvailabilityCyberArk Endpoint Privilege Manager, previously CyberArk Viewfinity, will be available in Q4 2016 via direct sale or through CyberArk's network of global channel partners. The product is available as a single agent and part of the CyberArk Privileged Account Security Solution. CyberArk Endpoint Privilege Manager is available as a SaaS or on-premises solution. For more information visit: http://www.cyberark.com/endpoint-privilege-manager. Additional Resources
- Video: Securing Privilege and Containing Attacks on the Endpoint
- eBook: Achieving Security and Productivity with Least Privilege and Application Control