Announcing Stream Traps: Delay Threat Actors to Detect and Respond More Effectively

Security teams are increasingly turning to automated responses to combat the rapid pace of cloud attacks, but trust in automation is challenging due to the prevalence of false positives. Stream Traps offers a novel solution by embedding deception assets, or "cloud traps," within cloud infrastructure to detect, delay, and divert attackers, providing the necessary signals and context for effective response. Unlike traditional on-premises deception tools, cloud traps are scalable, require minimal maintenance, and align with common cloud attack techniques, which enhances detection fidelity by ensuring that legitimate users do not interact with these traps. Stream Traps, integrated with Stream's CloudTwin real-time model, empowers security teams by offering precise trap placement near high-value assets and along realistic attack paths. This integration ensures that trap engagements are treated as verified indicators of a compromise, reducing false positives and alert fatigue. Additionally, attackers interacting with Stream Traps can be redirected to a sandbox environment, allowing for intelligence gathering without risking production systems, making cloud traps a high-signal, actionable component of modern detection strategies.