top of page

Cyberhaven Announces Full Context Blocking Capabilities

Cyberhaven, inventor of the industry’s first Data Detection and Response (DDR) platform, announces the availability of new in-line blocking and adaptive response capabilities to transform how organizations protect their data from IP theft and insider threats. As the only solution to apply real-time policy enforcement based on the full lineage and enterprise context of data, Cyberhaven enables security teams to protect any type of data and mitigate risks that were never possible with traditional DLP and CASB tools. Cyberhaven’s Full Context Blocking can prevent exfiltration or misuse of sensitive, high-value data with unprecedented accuracy without the need for complex rules and tagging.

“The addition of comprehensive blocking capabilities to our platform extends Cyberhaven’s mission to modernize the data protection category and replace obsolete DLP products,” said Howard Ting, CEO, Cyberhaven. “Despite being a staple in the data security tech stack, DLP products today do nothing more than create pain for security teams and friction for users. Our DDR platform sets the new standard for data protection that is comprehensive, accurate, easy to implement, and mitigates data risk in the common workflows that define modern digital businesses.”

Cyberhaven’s latest features enable real-time enforcement policies based on the full context and history of data. Teams can automatically identify and control high-value data, ensuring that policies follow data even as it is modified, copied and shared across the enterprise. The platform’s blocking capabilities extend even further, preventing risky data sharing to personal cloud storage and encrypted messaging applications as well as local USB media.

Since Cyberhaven’s DDR platform operates well beyond content patterns or binary block/allow functionality like most DLP tools, it can better protect all sensitive enterprise data, whether in-use, in-motion or at-rest, even in locations that were unknown to the security team and regardless of any user evasion tactics. By mapping a complete lineage of data’s movement from inception, organizations have the visibility and control necessary to ensure security policies protect any type of data -- even if encrypted -- without the need to tag or pre-process it. This visibility and control helps further minimize the risks of data sprawl without sacrificing users’ ability to create, collaborate and maintain privacy.

“For years, organizations have been forced to cobble together multiple incomplete solutions like DLP and CASB, while still being exposed to unacceptable data risk,” said Volodymyr Kuznetsov, CTO, Cyberhaven. “But our solution solves those challenges by marrying context and lineage with real-time enforcement to give security teams precise and effective control over sensitive data in all its forms, no matter who modifies it or interacts with it.”

In the past, organizations have been apprehensive about using DLP data blocking features out of a concern for disrupting productivity and work. DLP regular expressions are highly prone to false positives, while policies from DLP products are often seen as one-sided decrees lacking the fluidity and complexity to truly accommodate the needs of dynamic digital organizations. Conversely, end-users perceive traditional DLP blocking as invasive and disruptive, primarily when used as a means of enforcing newly introduced or previously unknown security policies. Cyberhaven’s blocking methodology remedies those issues by calling upon contextual information, such as provenance, app, user, and content, to enforce policies without frustrating users and overwhelming security teams with false positives from outdated signature models.

For more information about Cyberhaven and its DDR capabilities, please visit:



bottom of page