Threat Detection

Unified threat detection for AWS cloud and containers

Mar 30, 2021 By Vicente Herrera García In Sysdig

Implementing effective threat detection for AWS requires visibility into all of your cloud services and containers. An application is composed of a number of elements: hosts, virtual machines, containers, clusters, stored information, and input/output data streams. When you add configuration and user management to the mix, it’s clear that there is a lot to secure!

Read Post

Sysdig

Read more about Unified threat detection for AWS cloud and containers

Detecting Cobalt Strike with memory signatures

Mar 16, 2021 By Joe Desimone In Elastic

At Elastic Security, we approach the challenge of threat detection with various methods. Traditionally, we have focused on machine learning models and behaviors. These two methods are powerful because they can detect never-before-seen malware. Historically, we’ve felt that signatures are too easily evaded, but we also recognize that ease of evasion is only one of many factors to consider.

Read Post

Elastic

Read more about Detecting Cobalt Strike with memory signatures

Host-based Intrusion Detection System - Overview and HIDS vs NIDS

Feb 18, 2021 By Harman Singh In Cyphere

Although a business appears to make every effort to protect its assets, there is still no security guarantee. Hackers being fully aware of this uncertainty, tend to take complete advantage by tricking users or bypassing restrictions of the technology products in use, allowing them to acquire complete access. Such perils have given rise to the necessity of having a proactive approach towards cyber security to identify, prepare and respond to events.

Read Post

Cyphere

Read more about Host-based Intrusion Detection System - Overview and HIDS vs NIDS

How The Dark Web Continues to Threaten Businesses

Feb 16, 2021 By SecuritySenses In SecuritySenses

The Internet is a massive space. Seven days a week, millions of web sites, files, and servers run 24 hours a day. Even so, it is just the tip of the iceberg that we surf and the visible websites that can be accessed using search engines such as Google and Yahoo. The Deep Web, which makes up approximately 90 percent of all websites, is underneath the ground. This hidden network is so massive that it is difficult to figure out at any given time how many pages or sites are currently involved.

Read Post

SecuritySenses

Read more about How The Dark Web Continues to Threaten Businesses

Cyber Security in 2021: Confident Detection and Response

Feb 10, 2021 By Kroll In Kroll

As the volume and sophistication of cyber threats grow, it’s imperative that companies have the ability to rapidly detect and confidently respond to a variety of threats. Devon Ackerman, Head of Incident Response for Kroll’s Cyber Risk practice in North America shares how security leaders feel their organizations are inadequately resourced to run a mature detection and response program.

View Video

Kroll

Read more about Cyber Security in 2021: Confident Detection and Response

Intrusion Prevention Systems explained: what is an IPS?

Feb 4, 2021 By Nick Cavalancia In AT&T Cybersecurity

The goal of every cybersecurity strategy is to stop cyberthreats before they have a material impact. This has resulted in many organizations seeking to be more proactive in their response to potential threats by employing solutions to detect and prevent specific types of cyberattacks by monitoring for the earliest indicators of attacks found within network traffic.

Read Post

AT&T Cybersecurity

Read more about Intrusion Prevention Systems explained: what is an IPS?

Redscan Q&A: Cyber Security Innovation with Paul Sutton

Jan 20, 2021 By Paul Sutton In Redscan

We asked Paul Sutton, Head of Research & Development at Redscan Labs, to tell us about the work he and his team are doing to ensure Redscan remains at the forefront of detection and response.

Read Post

Redscan

Read more about Redscan Q&A: Cyber Security Innovation with Paul Sutton

We are better together: AT&T USM Anywhere and Digital Defense Frontline

Jan 19, 2021 By Rakesh Shah In AT&T Cybersecurity

Detecting the threat after collecting the right data is the first step. From there, the impact of the threat really matters; otherwise, security teams may be chasing after too many issues.

Read Post

AT&T Cybersecurity

Read more about We are better together: AT&T USM Anywhere and Digital Defense Frontline

Runtime Threat Detection on AWS

Jan 12, 2021 By Sysdig In Sysdig

Tune into our #LinkedInLive event on Jan 12 at 10 am PST and Join Sysdig and AWS experts to learn how to detect and respond to threats to your production applications running on services like AWS Fargate and Amazon EKS. With the rise of microservices and DevOps practices, new security threats put your infrastructure and applications at risk. Hear how to leverage signals from AWS CloudTrail and open source Falco to spot unexpected behavior, block threats, and validate compliance across your AWS environment.

View Video

Sysdig

Read more about Runtime Threat Detection on AWS

How to Enable Detection Rules via Elastic Security - Version 7.10

Dec 16, 2020 By Elastic In Elastic

The detection engine brings automated threat detection to the Elastic Stack through the Security app in Kibana. As part of our belief in the power of open-source, Elastic Security has open sourced all our detection rules to work alongside the security community to stop threats at scale and arm every analyst. In this video, you’ll learn more about the detection engine and how to automate the protection of your data.

View Video