Accurately identifying risks within cloud environments and effectively prioritising exposure data at scale are two of the most difficult challenges firms face when mapping their attack surface. Looking to lighten the burden, Bitsight, the cyber risk management firm has revealed its new asset mapping capabilities.
These new services will allow firms to better manage vulnerabilities across their extended attack surface. This has come as a result of more cloud tech usage. Cloud infrastructure is shared by many organisations. As such, maintaining accurate mappings between cloud provider IP addresses and the entities using them is extremely challenging.
One solution to this problem is Bitsight’s Cloud Infrastructure Sync (CloudSync). Launched last year, the solution non-intrusively synchronises customers’ public IP addresses from their Amazon Web Services (AWS) account. As part of this latest update, this feature was redesigned and extended to include two additional cloud service providers:
- Microsoft Azure
- Google Cloud Platform (GCP)
Following this, CloudSync adoption has risen by 170 per cent.
“The enterprise attack surface that our customers are protecting is evolving very quickly,” said Alex Laats, chief product officer, Bitsight. “As their use of cloud-based service providers continues to surge, our customers need to see Bitsight’s security telemetry for their cloud assets. And as their digital infrastructure expands, customers expect Bitsight to discover and attribute assets to entities, with both context and confidence.
“Bitsight’s CloudSync capability and our ever-improving AI models are helping customers keep up with the continuous expansion of their attack surface.”
Utilising AI through Graph of Internet Assets tech
Bitsight has also introduced new AI models within its Graph of Internet Assets (GIA) technology. GIA uses AI to map discovered assets to specific entities, which are then prioritized and hand-curated by Bitsight’s research team. Furthermore, this ensures Bitsight AI is trained on verified data to deliver high levels of accuracy and enhance the breadth of asset discovery.
Notable improvements enabled by GIA’s new AI models include:
- Automatically ranked attribution suggestions for IP address allocations and domains
- Accelerated attribution refresh speeds by two times for IPs assigned using certificates
- New ‘probable assets’ data sets will bring additional attack surface discovery to customers based on combining inferences from a range of data sources