Cabinet Office invests in ‘honeypot’ cyber traps to help protect network
Department invests in technology from specialist start-up
The Cabinet Office has invested in specialist “honeypot” technology designed to help detect and disable cyberattackers.
Newly published commercial information reveals that, on 6 April, the department entered into a two-year deal with Thinkst – a specialist start-up which pioneered canary technology, which refers to hardware or software tools that can be deployed on a network to identify attacks or other unauthorised access.
The technology from Thinkst – which is called Canary – is designed to mimic the networks or services of the company’s customers.
“When… attackers… encounter a Thinkst Canary, the services on offer are designed to solicit further investigation, at which point they’ve betrayed themselves, and your Canary notifies you of the incident,” according to the company’s website.
- EXCL: Cabinet Office alerted to data breach – and fails to respond for 10 days
- Revealed: Cabinet Office signed deal last month for ‘immediate cyber incident response’
- Government’s cyber plan delivers ‘a complete revolution in how we provide assurance’
The Cabinet Office has invested in “21 Canaries and [a] management console”. The deal signed by the department – via its recently rebranded CO Digital technology unit, which has a remit of “enabling and transforming the Cabinet Office” – also includes “all updates, support, warranty, and unlimited Canarytokens” , a tool which allows users to “implant traps” on their systems and ensnare attackers.
According to the text of the contract – which government procurement archives indicate is the first public-sector deal won by the South Africa-based start-up – the canary technology will allow the central department to identify threats much more quickly.
“A canary honeypot is a system that mimics a production system and is deployed to service as an early-detection mechanism in the event of a network breach,” the document said. “Canaries constantly report in, and provide an up-to-the-minute report on their status, allowing for real-time alerting should unauthorised access to the Cabinet Office network be detected.”
The technological concept of the canary system is named in reference to the role played by canaries in helping to detect harmful gases in coalmines.
Share this page
CONTRIBUTIONS FROM READERS
Please login to post a comment or register for a free account.
Authorities have complained about the lack of time taken to be notified by IT firm and wrongly being told personal data was not put at risk
Authority claims it is taking ‘swift and decisive action’ in response to incident it claims affected several councils
Atos wins three-year contract to assist with Shared Application Service
Ministerial announcement follows initial examinations of Home Office and business department earlier this year
Related Sponsored Articles
The traditional reactive approach to cybersecurity, which involves responding to attacks after they have occurred, is no longer sufficient. Murielle Gonzalez reports on a webinar looking at...