Gained a greater understanding of the risk associated with any given connection
Provided the analysis, insights, and detection capabilities to keep customers secure
Used data to more confidently mitigate risk and respond to potential threats
Viasat provides internet services for a wide range of customers—from military and government to large enterprises, small businesses, and home offices. With this breadth of customers, they can see what types of attackers and attack tactics are used against different customer types and industry verticals. Viasat uses ExtraHop to support behavioral modeling of attacks targeting different industries, from healthcare to retail to government entities, and to proactively prevent these attacks.
As an ISP, Viasat has no authority at either end of the conversation, but they can see what goes across the middle. They've stopped ransomware attacks their customers didn't even know were happening. With ExtraHop, Viasat can see when network scanning, open port discovery, brute force attacks, successful logins, and ransomware payloads are transmitted to their customers.
Viasat uses ExtraHop to add rich context to indicators of compromise from threat intelligence feeds they subscribe to. With endpoint-focused threat intelligence and network context, Viasat gains a greater understanding of the risk associated with any given connection or IP address, and uses this data to more confidently mitigate risk and respond to potential threats.