Israeli Hotel Protects Its VDI From Zero-Days, Evasive Exploits, Browser-Based Attacks and Backdoor Attacks
The Dan Hotel group, a luxury hotel chain, knows the importance of technology for streamlining operations, expanding opportunities and providing an outstanding customer experience. However, it also understands the enormous risks that come with digital adoption.
“It’s not just a matter of compliance," says Dan Hotels’ VP of IT Yossi Gabay. "As the leading hotel brand in the country, security here means to secure our name. We have a mandate to protect our customers' personal and financial information and the level of service they receive. Whatever happens, operations cannot stop, 24 hours per day, 7 days a week.”
Dan Hotels utilizes a VDI system across its properties to bring consistency, control and efficiency but it also increases threat exposure. A breach in one endpoint could put the entire infrastructure at risk. When assessing the threat landscape, Gabay saw that the company’s classic security stack of network security and antivirus left it increasingly vulnerable to advanced attacks. He knew he needed a technology that could tackle all the newly emerging advanced threats before Dan Hotels became another entry in the long list of hotel breaches. A VDI environment, however, poses particular challenges – any security solution must be extremely lightweight so that it doesn’t lower consolidation ratios. It also can’t rely on signatures or other methods that require updates as this impacts system load times.
Gabay heads a dedicated team that deals with all aspects of IT operations, user support, and security. He has built a robust environment backed up by efficient processes and tools to handle operations vital to the business. He abhors unnecessary complexity and seeks out cutting-edge technologies that adhere to this principal.
In researching the latest security solutions, Gabay came across Morphisec’s Moving Target Defense approach and was intrigued by its ability to prevent advanced threats without relying on any prior knowledge. Its minimal footprint also made it uniquely well-suited to Dan Hotels’ VDI environment. After extensive comparison testing, Gabay selected Morphisec Endpoint Threat Prevention.
“I was impressed not only with Morphisec’s groundbreaking technology but with the extremely high level of expertise I encountered,” Gabay says. “I could trust that the product would perform as promised. And it does.”
Once the selection was made, the solution was rolled out in three phases: first on the dozens of virtualized servers, next the higher risk endpoints and then on the remaining endpoints. All prevention functionality kicked in at the moment of installation, with no configuring, learning, database connections, tuning or rule setting.
Dan Hotels’ entire VDI is now protected from zero-days and advanced attacks like evasive exploits, browser-based attacks, fileless threats and backdoor, supply-chain attacks. Since installing Morphisec, the hotel group has had no breaches or operational disruptions from security incidents. Gabay and his team appreciate that Morphisec has zero associated maintenance, no false alerts and minimal to no interaction with the end user. Most importantly, the hotel group can be secure in its commitment to be operational 24/7 for its customers and protect their sensitive information.
“The effectiveness of Morphisec’s endpoint protection is unequaled," Gabay notes. "This is the first security product I have ever seen that does its job as advertised and is literally an ‘Install & Forget’ solution.”