Threat Detection

How Corelight Transforms Data Security with Normalyze

Mar 20, 2023 By Corelight In Corelight

When organizations need to know not only what type of malicious activity potentially occurred within their networks and clouds but also gather the remnants of that activity as evidence — they turn to Corelight. Corelight's customers include Fortune 500 companies, major government agencies, and large research universities. Based in San Francisco, this open-core security company was founded by the creators of the widely-used network security technology, Zeek.

View Video

Corelight

Read more about How Corelight Transforms Data Security with Normalyze

Expand visibility around authentication and application anomalies with Corelight's new LDAP analyzer

Mar 20, 2023 By Vince Stoffer In Corelight

Comprehensive visibility into network protocols is a hallmark of Zeek (and therefore Corelight) data. That's why we are very happy to announce that with our v27.2 release we are supporting a new analyzer for the LDAP protocol. You likely know LDAP as a workhorse for carrying directory information across the network. While it's an open standard, it's most often seen as part of several server implementations, especially Microsoft's Active Directory, OpenLDAP, and others.

Read Post

Corelight

Read more about Expand visibility around authentication and application anomalies with Corelight's new LDAP analyzer

How to Streamline Security Operations With Identity Security Intelligence

Mar 9, 2023 By Sam Flaster In CyberArk

“Black Swan” author Nicholas Nassim Taleb once wrote that “intelligence consists in ignoring things that are irrelevant (avoiding false patterns).” Organizations must take this definition to heart as they incorporate Identity Security intelligence – an essential element of any Zero Trust cybersecurity strategy. Many organizations have dedicated Security Operations Center (SOC) teams responsible for their threat detection, investigation and response efforts.

Read Post

CyberArk

Read more about How to Streamline Security Operations With Identity Security Intelligence

And The Award Goes To...

Mar 7, 2023 By Lauren Farrell In Centripetal

Since 2009 we have been innovating and creating the best and most innovative cybersecurity technologies for our customers. This hard work pays off every day when we talk with our customers and others in the industry, about the strength of their security posture with CleanINTERNET®. We also appreciate when our company and technology is validated by third parties.

Read Post

Centripetal

Read more about And The Award Goes To...

ThreatQuotient Selected by Sysdig to Scale Cloud Threat Detection and Response

Feb 23, 2023 By ThreatQuotient In ThreatQuotient

Sysdig has standardised on the ThreatQ Platform for data-driven security operations, saving time and improving threat detection and research capabilities at scale.

Read Post

ThreatQuotient

Read more about ThreatQuotient Selected by Sysdig to Scale Cloud Threat Detection and Response

Threat Hunting vs. Threat Detecting: Two Approaches to Finding & Mitigating Threats

Feb 21, 2023 By Guest In Splunk

Threat hunting and detection are two major prevention strategies in modern cybersecurity systems. Both strategies help identify potential threats to the organizations — though they take different approaches to threat identification. This article explains the difference between threat hunting and detection, so you know what to focus on for your organization’s cybersecurity strategy.

Read Post

Splunk

Read more about Threat Hunting vs. Threat Detecting: Two Approaches to Finding & Mitigating Threats

Intrusion Detection Through Cyber Deception: Disrupting Attacks With An Active Defense

Feb 17, 2023 By Dwayne McDaniel In GitGuardian

Misleading attackers to trigger alarms can stop them in their tracks and keep damage to a minimum. Honeytokens, like the ones you can make with GitGuardian's ggcanary, let you easily set such traps.

Read Post

GitGuardian

Read more about Intrusion Detection Through Cyber Deception: Disrupting Attacks With An Active Defense

Why organisations need MDR

Feb 16, 2023 By Mark Nicholls In Redscan

In this blog post, we discuss the reasons behind the growth of MDR and outline how it enables organisations to address cyber threats more quickly and effectively.

Read Post

Redscan

Read more about Why organisations need MDR

Entity Collection Overview

Feb 16, 2023 By Corelight In Corelight

The current tempo in information security is getting increasingly faster. We continue to chase quicker detections and faster responses. But does that align with reality? Troves of data is being ingested at wire speed w/filtering, comparing, correlating, identifying, and other transform operations in the event lifecycle. This comes with an increased risk of missed events/alerts, indiscernible log activity from various origins, and the potential for analysis paralysis/desensitization/burnout…

View Video