Illumio announced Illumio Edge, a first-of-its kind Zero Trust endpoint protection solution that dramatically reduces the risk of ransomware and malware propagating laterally throughout an organization. Fully managed in the cloud, customers can enable this new offering either via a lightweight Illumio agent or, through a partnership with CrowdStrike, via an existing CrowdStrike Falcon agent.
By making every endpoint a Zero Trust endpoint, organizations can better secure users as they now work from anywhere.
According to leading global research and advisory firm Forrester, “Entire industries have been affected and, in some cases, ground to a halt thanks to the scourge of ransomware attacks. While endpoint-focused security solutions have evolved, ransomware continues to impact enterprises… Worms such as WannaCry and NotPetya rely on lateral movement to escalate a containable nuisance to a cataclysmic attack. Microsegmentation and focused granular internal controls mitigate this problem and must be deployed as part of a Zero Trust strategy.”
As the world adjusts to the ‘new normal’ of work-from-anywhere, the threat landscape has widened as attackers target unsuspecting employees on laptops to gain an initial compromise, and then move laterally to reach an intended target within an organization. This makes effective endpoint protection more important than ever before. While most existing endpoint security tools focus on initial threat prevention of malware or its subsequent detection and response, Illumio Edge goes beyond traditional endpoint security tools to prevent the spread of malware and ransomware after an initial compromise.
Illumio Edge delivers containment by default to significantly reduce an organization’s attack surface. This solution makes every endpoint a Zero Trust endpoint, blocking all unnecessary inbound network communications to greatly reduce the risk of malware spreading peer to peer without the fear of false positives. By pairing malware detection from Next-Generation Anti-Virus (NGAV) or Endpoint Detection and Response (EDR) solutions with Illumio’s endpoint Zero Trust, organizations can not only stop known malware, but also block zero-day threats and unknown malware by preventing lateral movement between endpoints.
“As organizations were forced to transform overnight to allow for remote work, a host of endpoint security issues that have either been ignored or invisible until now were brought to the forefront,” said Andrew Rubin, CEO and co-founder of Illumio. “We built Illumio on an innovative, forward-thinking foundation and have been listening to our customers’ requests for a better solution to combat lateral movement on the endpoint. We believe Illumio Edge is a fundamental shift to strengthen cybersecurity practices for organizations of all sizes, and we’re excited to partner with an innovative leader like CrowdStrike to bring this to market at mass scale today.”
This new offering starts with a simple workflow to create automated, risk-free allow lists for detected services. With policy in place, simple enforcement follows the laptop wherever it goes – on and off the network. Not only is it easy to put enforcement in place, Illumio Edge is invisible to employees, meaning it will not harm system performance, and IT teams can rest easy knowing there will be no new unnecessary IT tickets.
Illumio Edge is cloud delivered with a lightweight agent that runs on endpoints. The company is also announcing today a partnership and integration with CrowdStrike, a leader in cloud-delivered endpoint protection. CrowdStrike customers will be able to use their existing Falcon agent to enable Illumio Edge, with no additional software deployments required. Illumio Edge will be available in the CrowdStrike Store in July.
“We are proud to add Illumio to our growing CrowdStrike Store ecosystem. CrowdStrike customers can further maximize their investment in the CrowdStrike Falcon platform by leveraging Illumio Edge to further fortify their organizations against the lateral movement of malware without the need for any additional agents,” said Michael Sentonas, chief technology officer of CrowdStrike. “Illumio Edge combined with CrowdStrike’s instant visibility and protection across the enterprise will bring Zero Trust to every endpoint regardless of location and will offer our customers the most complete threat prevention capabilities, all seamlessly accessible through the CrowdStrike Falcon platform.”