Zscaler has introduced several new zero trust network access capabilities, including enhanced detection of lateral movement and new functionality for blocking compromised users from exploiting a vulnerability.
The updates are enhanced in Zscaler Private Access, which secures access to a company’s private applications. The product leverages Zscaler’s Zero Trust Exchange platform, which combines a cloud based secure web gateway with cloud delivered ZTNA.
The new capabilities include integrated deception, An “industry-first” when it comes to providing deception-based security, within a zero trust architecture, to detect lateral movement.
Zscaler is the first of a kind Security Service Edge (SSE) offering that is able to intercept the most advanced adversaries and prevent lateral movement with built-in decoys and automated containment across the Zero Trust Exchange and third-party security operations platforms.
Deception as a capability in SSE is a compelling solution to address the compromised user problem, where an advanced attacker has stolen valid credentials or taken over a legitimate system. The integrated deception capability also helps to reduce alert fatigue with “high-confidence” alerts generated by the system’s decoys.
A second new capability being unveiled is private app protection, which focuses on stopping attackers from exploiting private apps that are vulnerable. A key feature included in the solution is in-line inspection of private app traffic.
Zscaler announced that it’s introducing privileged remote access for industrial IoT and OT systems, expanding beyond users and workloads.
Gartner positioned Zscaler in the “leaders” quadrant inaugural Magic Quadrant for Security Service Edge. Only two other vendors, McAfee Enterprise’s SSE business and Netskope, landed in the SSE leaders quadrant.