Preemptive cyber defense startup Silent Push Inc. today announced the launch of Traffic Origin, a cybersecurity solution designed to shift an organization’s security posture from reactive to proactive.

It does so by exposing the true upstream origin of adversaries, whether they’re hiding via residential proxy, laptop farm, virtual private network or other obfuscation technique. Silent Push Traffic Origin gives defenders an advantage by providing origin certainty where other defensive tools see nothing but obfuscation. The solution also allows investigators to identify high-risk remote sessions before they escalate into attacks or credential theft.

Key features include upstream traffic discovery that goes beyond the surface to reveal the true origin of web traffic. Traffic Origin identifies the “Countries Connected” to an IP, analyzes upstream routing sources, IP address reputation and density, as well as host diversity and categorization, including VPN, proxy, Tor or residential proxy.

The solution offers high-confidence risk indicators that eliminate analyst guesswork by providing definitive indicators when a residential proxy is routing traffic from sanctioned or high-risk countries, such as North Korea, Iran or Russia. Another feature, total view context, gives a visual correlation within the Silent Push platform.

“Silent Push Traffic Origin empowers organizations to detect if seemingly legitimate web traffic is actually being routed from high-risk regions or adversary-controlled infrastructure,” said Chie Executive Ken Bagnall. “This gives security teams the immediate capabilities to mitigate fraud, identify high-risk logins, vet remote workers and improve processes of Know Your Customer and Anti-Money Laundering.”

Traffic Origin also overcomes the issue with traditional cyber defense that is inherently reactive and only detects attacker infrastructure after it is used in an attack. Silent Push argues that today’s most sophisticated adversaries, especially North Korean information technology workers, exploit this lag by hiding in plain sight.

An example of the risk is the use of fraudulent personas to gain legitimate employment, followed by sophisticated obfuscation techniques to bypass geographic restrictions, which can include laptop farms, residential proxies and infrastructure mimicry. The result, according to Silent Push, is high-risk actors who appear as legitimate remote employees, creating a devastating insider threat that traditional defenses cannot detect.

The venture capital-backed startup has raised $32 million over three rounds, including rounds of $10 million in June 2023 and another $10 million in September. Investors include StepStone Group Inc., Ten Eleven Ventures, Knollwood Investment Advisory and Europa Capital.

Image: SiliconANGLE/Ideogram