Cymulate Advances Attack Surface Management Solution

Risk management and mitigation to reduce exposure for financial investment, projects, engineering, businesses. Concept with manager’s hand turning knob to low level. Reduction strategy.

Cymulate has upgraded its Attack Surface Management (ASM) solution to close gaps between traditional vulnerability management and ASM.

Organizations will now have advanced capabilities to visualize risky exposures across hybrid environments, Cymulate said in a prepared statement. Accordingly, the company is extending its coverage to include more attack surface discovery. It has also added misconfiguration detection, cloud-specific analysis and vulnerability discovery.

Mapping the Attack Surface

The new enhancements will analyze Active Directory, Azure, GCP and AWS Cloud footprints for misconfigurations and remediable security concerns. As Avihai Ben-Yossef, Cymulate’s chief technology officer and co-founder, explained:

"Customers will immediately benefit from seeing gaps in their public-facing infrastructure and through attack path mapping to see how an attacker can traverse the network from on-premises to cloud and cloud to on-premises. This will significantly aid organizations in assessing how at risk their organization's assets are."

Vulnerability scanners are designed to identify, classify, prioritize, and remediate vulnerabilities that could be exploited, primarily from within the environment, according to Cymulate. Conversely, attack surface management has mainly focused on discovery of vulnerabilities from an external perspective.

Cymulate asserts that its solution now closes the visibility gap needed to understand if an exposure has a viable attack path. This brings exposure management to a new level that is more continuous and efficient for classifying and prioritizing the remediation of vulnerabilities.

The ASM solution expansion provides four new tool capabilities:

  • Active Directory misconfiguration scanning
  • Cloud misconfiguration scanning
  • Vulnerability scanning
  • Unified attack path mapping and analysis (UAPMA)

The capabilities provide more information than just what needs to be patched. Plus, the ability to leverage information from more sources to determine the priority of each remediation action, according to Cymulate.

More Benefits to Cymulate’s Attack Mapping

The Unified Attack Path Mapping and Analysis (UAPMA) solution will:

  • Support attack pathing and security validation across networks, clouds, and identity systems, including Active Directory services
  • Deliver a detailed picture of viable attack paths and techniques than can be discovered when compared to performing such scanning operations only in one infrastructure or the other
  • Factor in that interconnections, trusts, permissions and other variables can change the path of an attacker in unexpected ways
  • Clearly identify and see attack paths (displayed as graphs and detailed information), which delivers a quicker way to identify and close gaps without disrupting business operations

When paired with Cymulate Breach and Attack Simulation (BAS) technology, security teams can also validate whether controls that sit in the attack path successfully detect and alert on threat activity, Cymulate explained.

Cymulate Unveils Trend Micro Integration, Secures Funding

The ASM solution enhancements come after Cymulate in December 2022 joined the Trend Micro Vision One ecosystem partner program. Together, Cymulate and Trend Micro offer an eXtended detection and response (XDR) solution that validates security across the cyberattack kill chain. The joint solution also lets users simulate attacks in alignment with the MITRE ATT&CK framework.

Previously, Cymulate in September 2022 added $70 million in Series D funding from multiple investors. Cymulate is using the funding to expand globally and drive innovation, the company indicated.

Cymulate provides a continuous risk validation and exposure management platform to global organizations. It offers an MSSP partner program and continues to pursue partnership opportunities.

Jim Masters

Jim Masters is Managing Editor of MSSP Alert, and holds a B.A. degree in Journalism from Northern Illinois University. His career has spanned governmental and investigative reporting for daily newspapers in the Northwest Indiana Region and 16 years in a global internal communications role for a Fortune 500 professional services company. Additionally, he is co-owner of the Lake County Corn Dogs minor league baseball franchise, located in Crown Point, Indiana. In his spare time, he enjoys writing and recording his own music, oil painting, biking, volleyball, golf and cheering on the Corn Dogs.