TNAD captures and analyzes traffic on the external telecom perimeter and in both virtualized (NFV) and hardware-based infrastructure. This allows detection of the hackers activity to deny the initial network penetration, as well proactive exposure of intruders attempts to get a foothold in the network and pursue their attack.
Identified 5G specific security threat including new risks in vectors such as Network Exposure Function (NEF)
Abuse of remote OSS/BSS access
API exploitation & abnormalities from MEC to third party API connectivity
SDN & NFV network threats
Anomalies in user plane GTP-U traffic
Exploitation of misconfiguration & existing vulnerabilities in Core/IT networks
TNAD detects misconfigurations and instances of security policy non-compliance that can pave the way for attackers. Examples include OSS and Orchestrator credentials stored in clear-text, unencrypted messages and management/control plane protocols, remote access utilities, and tools that hide network activity.
Thanks to embedded machine learning technologies, advanced analytics, unique threat detection rules, indicators of compromise, and retrospective analysis, TNAD detects attacks both at the earliest stages and after attackers may have already penetrated the infrastructure.
With TNAD, security teams can localize an attack, trace its chain, detect vulnerabilities in infrastructure, and implement countermeasures to prevent future incidents, for instance abuse of legitimate remote access for vendors, value added services, or mobile device management. This is particularly relevant during the extended network transition to a full standalone 5G infrastructure.
TNAD delivers exceptional threat hunting. MNOs can test hypotheses about their security to detect the hidden threats that slip by ordinary cybersecurity solutions. Such as the detection of silent APT threats, and complex protection of the core network and its interfaces.
Check your network and perimeter. Contact us to get a free trial and find hidden threats: