Hacker Mirror: Pt NAD, Zvirt Unveil Virtual Traffic Secrets

The PT Network Attack Discovery (PT NAD) behavioral analysis system of network traffic has successfully tested compatibility with the ZVIRT virtualization environment control platform developed by Orion Soft. The integration of these systems allows for full visibility of traffic in virtual IT infrastructures, enabling experts to monitor network interactions between virtual machines within the same hypervisor and identify hacker movements used to spread attacks.

Russian virtualization platforms are in high demand in various industries such as banking, energy, industrial, transport, and the public sector. According to Strategy Partners, the Russian virtualization market reached 10.08 billion rubles in 2023, with 45% of the market share held by domestic vendors.

Effective integration of virtualization solutions with other IT products is crucial. The ability to mirror traffic in infrastructure solutions is essential for NTA-systems to identify attackers effectively. The lack of this functionality can significantly reduce the effectiveness of NTA systems in detecting threats.

The ZVirt platform has implemented a network traffic mirroring mechanism, allowing for compatibility with the PT NAD NTA system. This integration by Orion Soft and Positive Technologies enables businesses to analyze traffic and identify potential threats by copying and analyzing flows between virtual machines.

Experts highlight that PT NAD and ZVirt form the only compatible pair in the Russian market capable of recording and analyzing horizontal network flows, which are crucial in detecting and preventing attacks utilizing horizontal movement to spread within a network.

Companies are showing interest in monitoring vulnerabilities and attacks within virtualization systems. Orion Soft, in partnership with Positive Technologies, aims to provide customers with advanced security solutions. The integration of ZVirt and PT NAD offers a comprehensive solution to detect hidden cyber threats through traffic analysis.

Positive Technologies and Orion Soft are planning to collaborate on automating the deployment of PT NAD in virtual infrastructures based on ZVirt, providing customers with a streamlined solution without the need for additional equipment installations.

/Reports, release notes, official announcements.