Stealth attacks still overpower virtualization security despite major efforts from the security industry. In 2016, it took enterprises an average of 5 months to discover they have been breached, and found zero-days and sophisticated kernel-level malware to be often at the root of the breach.
Bitdefender and Citrix joined their expertise in virtualization and security and developed a new security layer which malware cannot reach, nor can it hide from – through raw memory introspection directly at hypervisor level.
Bitdefender Hypervisor Introspection (HVI) is the first security solution that is able to uncover memory violations that endpoint security tools sometimes miss by directly analyzing raw memory lines - which cannot be altered by malware.
Positioned completely outside the operation system, with hardware-enforced isolation, and with no agent or drivers in the endpoints, Bitdefender Hypervisor Introspection is impossible to take down or compromise by rootkits or other kernel-level threats.
By focusing on techniques, rather than the payloads, Bitdefender HVI is able to stay ahead of attacks, and protect you against notorious attack gateways such as browser zero-days or spear-phishing emails with exploited files attached that are not visible from within the guest OS.
Apart from containing the attack in real time, Bitdefender HVI can also help remove the threat, by automatically inject a temporary remediation tool in the affected Virtual Machine.
Bitdefender HVI sends out alerts the instant a memory violation is detected, and provides detailed reporting of the attack chain, including affected processes, type of violation, and timeline of the attack.
Instead of inserting an agent into each VM, Bitdefender HVI detects and secures infrastructures directly at hypervisor level, through a security virtual appliance. This is why, unlike other vendors that require you to remove your endpoint protection and replace it with theirs, Bitdefender HVI is complementary to and compatible with any existing security tools.
Bitdefender HVI’s centralized approach to security makes its deployment a
matter of minutes and its management straightforward, through
Bitdefender’s GravityZone Control Center.
After much invested effort, Bitdefender HVI now monitors your infrastructure
without impacting consolidation ratios, or slowing down user activity on the VM.
Windows desktop operating systems:
Windows server operating systems:
Linux operating systems:
Intreagued yet? Reach out to us to discover how Hypervisor Introspection can help you
fortify your XenApps and XenDesktops against targeted attacks through live memory introspection.