Case Study: Aflac (Fortune 500 insurer) achieves zero-false-positives in-network threat detection with Attivo Networks ThreatDefend Platform

Aflac, Inc. Uses Deception for Zero-False-Positives Threat Detection

Aflac, Inc., a Fortune 500 insurance provider, faced an evolving threat landscape and needed early, accurate detection of in-network attackers—especially zero-day and signatureless threats—without the distraction of high false-positive alert volumes. To close this gap the team selected Attivo Networks’ ThreatDefend Deception and Response Platform to provide authentic decoys and deceptive credentials for early threat visibility.

Attivo Networks deployed ThreatDefend across Aflac’s network and assigned ThreatStrike deceptive credentials to endpoints, integrating decoys into their threat intelligence. The solution produced zero false positives and high‑integrity alerts, reduced response “noise,” identified misconfigurations, and diverted attackers away from critical assets—demonstrated when a white‑hat hacker spent over two hours attacking a decoy before being detected, quarantined, and analyzed. Attivo Networks’ platform also feeds detailed forensics into Aflac’s hunting and correlation systems, improving detection of ransomware and targeted attacks.

Aflac