Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Threat Detection

Securosis Webinar New Age Network Detection

Feb 2, 2022 By Corelight In Corelight
New Age Network Detection: Keeping pace with the Evolution of Tech Infrastructure New approaches to network detection and response to address increasing attacker sophistication and cloud-based resources. How advances in analytics help organizations detect attacks in encrypted traffic and identify command and control traffic. The advantage of an open data approach is to integrate with existing detection capabilities.
View Video

XDR: The Importance of Network Technology

Feb 2, 2022 By Corelight In Corelight
XDR is new to the marketplace, and there remains confusion about what it is - and is not. Alex Kirk of Corelight likes to dispel the myth that it's about endpoint security. "You've got to have the N," he says - network technology. In this interview, he dispels myths and expounds on possibilities. In this video interview with Information Security Media Group, Kirk discusses.
View Video
Corelight

Government gets serious: deadlines for Zero Trust Architectures

Feb 2, 2022 By Jean Schaffer In Corelight

Since the 1990s, the federal government has been issuing guidelines and recommendations for security via their 800-Series Special Publications. While some of those guidelines became mandates, things have largely inched forward, instead of making any dramatic leaps. OMB’s new memorandum M-22-09, “Moving the U.S. Government Towards Zero Trust Cybersecurity Principles,” is changing this pattern, and setting deadlines for implementation across the government.

Read Post
datadog

Elevate AWS threat detection with Stratus Red Team

Jan 27, 2022 By Christophe Tafani-Dereeper In Datadog

A core challenge for threat detection engineering is reproducing common attacker behavior. Several open source and commercial projects exist for traditional endpoint and on-premise security, but there is a clear need for a cloud-native tool built with cloud providers and infrastructure in mind. To meet this growing demand, we’re happy to announce Stratus Red Team, an open source project created to emulate common attack techniques directly in your cloud environment.

Read Post
Corelight

Detecting CVE-2022-21907, an IIS HTTP Remote Code Execution vulnerability

Jan 26, 2022 By Corelight Labs Team In Corelight

In January 2022, Microsoft disclosed a remote code execution vulnerability for Internet Information Server (IIS) identified as CVE-2022-21907, which they have subsequently reported as wormable. Through Microsoft, Corelight Labs was able to review a proof of concept for an attack against the vulnerability. This blog presents an open source detection method that Corelight Labs is releasing to detect exploit attempts of CVE-2022-21907.

Read Post

No BS security: detect and automate with LimaCharlie & Tines

Jan 19, 2022 By LimaCharlie In LimaCharlie
Why is there so much BS involved in the building and selling of security software? The security stack of the future – and of today, in the best companies – is composed of tools that focus on doing one thing extremely well, with transparent value and pricing, packaged in a product that the team will actually enjoy using. Join Eoin & Maxime, the founders of Tines and LimaCharlie, as we explore why "No BS" is the future of security, and put our own products to the test: building an end-to-end sophisticated detection and response flow using the free, ungated versions of our products.
View Video
Trustwave

MDR or MSSP? A Comparison Guide

Jan 16, 2022 By Trustwave
In today's hyper-connected world, cyberattack risks have never been more pronounced. Threat actors continue to develop malicious, ingenious tricks and techniques to stay one step ahead of security systems and response specialists. As a result, a more focused and proactive approach to detecting, investigating, and responding to threats is required. In this guide, we break down the comparison between Managed Detection and Response (MDR) and Managed Security Services (MSS) and how to determine what to look for in providers.
Get Guide
Arctic Wolf

Arctic Wolf Joins Gartner Peer Insights Customer First Program

Jan 14, 2022 By Arctic Wolf In Arctic Wolf
Arctic Wolf joins the Gartner Peer Insights Customer First Program in the vulnerability assessment and managed detection and response service. The members of the Arctic Wolf team are excited to announce that we have pledged to be a Customer First vendor in the vulnerability assessment and managed detection and response service. Our team at Arctic Wolf takes great pride in this program commitment, as customer feedback continues to be a critical priority and shapes our products and services.
Read Post
sumologic

Monitoring your AWS environment for vulnerabilities and threat detection

Jan 13, 2022 By Sumo Logic In Sumo Logic
Managing the security of your Amazon Web Services (AWS) environment requires constant vigilance. Your strategy should include identifying potential threats to your environment and proactively monitoring for vulnerabilities and system weaknesses that malicious actors might exploit. In a complex environment—such as your AWS account with a multitude of services, coupled with various architectures and applications—the ideal solution should be both comprehensive and straightforward.
Read Post
splunk

Introducing ATT&CK Detections Collector

Jan 3, 2022 By Marcus LaFerrera In Splunk

The Splunk SURGe team loves to automate and simplify mundane tasks. Through rapid response blogs, we provide context and analysis on late breaking security events that affect everyone, not just Splunk customers. We are firm believers that through shared knowledge and experience we can help the masses better understand the threat landscape and how they can improve their security posture.

Read Post
Subscribe to Threat Detection

Copyright © 2024 OpsMatters™. All rights reserved.