Threat Detection

Threat Hunting vs. Threat Detecting: Two Approaches to Finding & Mitigating Threats

Feb 21, 2023 By Guest In Splunk

Threat hunting and detection are two major prevention strategies in modern cybersecurity systems. Both strategies help identify potential threats to the organizations — though they take different approaches to threat identification. This article explains the difference between threat hunting and detection, so you know what to focus on for your organization’s cybersecurity strategy.

Read Post

Splunk

Read more about Threat Hunting vs. Threat Detecting: Two Approaches to Finding & Mitigating Threats

Intrusion Detection Through Cyber Deception: Disrupting Attacks With An Active Defense

Feb 17, 2023 By Dwayne McDaniel In GitGuardian

Misleading attackers to trigger alarms can stop them in their tracks and keep damage to a minimum. Honeytokens, like the ones you can make with GitGuardian's ggcanary, let you easily set such traps.

Read Post

GitGuardian

Read more about Intrusion Detection Through Cyber Deception: Disrupting Attacks With An Active Defense

Why organisations need MDR

Feb 16, 2023 By Mark Nicholls In Redscan

In this blog post, we discuss the reasons behind the growth of MDR and outline how it enables organisations to address cyber threats more quickly and effectively.

Read Post

Redscan

Read more about Why organisations need MDR

Entity Collection Overview

Feb 16, 2023 By Corelight In Corelight

The current tempo in information security is getting increasingly faster. We continue to chase quicker detections and faster responses. But does that align with reality? Troves of data is being ingested at wire speed w/filtering, comparing, correlating, identifying, and other transform operations in the event lifecycle. This comes with an increased risk of missed events/alerts, indiscernible log activity from various origins, and the potential for analysis paralysis/desensitization/burnout…

View Video

Corelight

Read more about Entity Collection Overview

7 Things You Need To Know About Mobile Threat Defense Services

Feb 14, 2023 By Cybriant In Cybriant

A modern business needs to secure both physical networks and mobile devices. Here's what you need to know about mobile threat defense services.

Read Post

Cybriant

Read more about 7 Things You Need To Know About Mobile Threat Defense Services

How Intrusion Detection Systems (IDS) Work: One Part of Your Security Arsenal

Feb 14, 2023 By Muhammad Raza In Splunk

All cyberattacks that violate the confidentiality, integrity and availability (CIA) of the network and data demonstrate some form of anomalous behavior. The starting point of this behavior may be an unauthorized intrusion into the network and, then, unauthorized use of the resources contained within the network. If you can identify an unauthorized network intrusion attempt, you can maintain the CIA of your data assets and network resources.

Read Post

Splunk

Read more about How Intrusion Detection Systems (IDS) Work: One Part of Your Security Arsenal

DLL Side-Loading: How to Combat Threat Actor Evasion Techniques

Feb 13, 2023 By Matt Weiner In CrowdStrike

Threat actors constantly evolve their tactics and techniques to circumvent security solutions. Working at the cutting-edge of detection engineering, CrowdStrike rapidly tracks and observes these evolutions in tactics to deliver timely, effective detections that protect customers. In this blog, we explore DLL side-loading and learn how CrowdStrike has expanded protections with Advanced Memory Scanning.

Read Post

CrowdStrike

Read more about DLL Side-Loading: How to Combat Threat Actor Evasion Techniques

From Noise to Signal: Enrichment and Routing with Corelight, Cribl, and Elastic

Feb 8, 2023 By Corelight In Corelight

Monitoring network traffic is essential to SecOps. Security teams need to streamline network detection, data routing, and analysis for faster incident response. Corelight, Cribl, and Elastic combine to provide a unique solution that transforms the noise of network traffic into effectively routed, optimized data.

View Video

Corelight

Read more about From Noise to Signal: Enrichment and Routing with Corelight, Cribl, and Elastic

How SenseOn Stops Threats

Feb 1, 2023 By SenseOn In SenseOn

View Video

SenseOn

Read more about How SenseOn Stops Threats

Corelight Investigator introduces new Machine Learning Models

Jan 31, 2023 By Sara Shuman In Corelight

Corelight Investigator furthers its commitment to delivering next-level analytics through the expansion of its machine learning models. Security teams are now enabled with additional supervised and deep learning models, including: We continue to provide complete transparency behind our evidence -- showing the logic behind our machine learning models and detections, allowing analysts to quickly and easily validate the alerts.

Read Post