Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Corelight

Corelight

Expanded Suricata detections with Dtection.io

Nov 4, 2021 By Alex Kirk In Corelight

One of the most common questions that Corelight customers and prospects who are using our Suricata integration ask is “what signatures should I run?” While our answer has always started with the industry-standard Emerging Threats Pro feed, we recognize that other feeds - like the ones from Crowdstrike or private industry groups - often make excellent additions to the ET Pro set.

Read Post
Corelight

Microsoft + Corelight partner to stop IoT attacks

Nov 2, 2021 By Ed Smith In Corelight

When you hear the term “Internet of Things,” (IoT) do you picture home devices like lightbulbs, smart assistants, and wifi-connected refrigerators? Perhaps you think of enterprise devices like video conferencing systems, smart sensors, or security cameras? Or maybe traditional office equipment like VoIP phones, printers, and smart TVs come to mind. No matter what devices you imagine, IoT represents an ever-expanding attack surface.

Read Post

The Callback is Coming From Inside the House

Oct 29, 2021 By Corelight In Corelight
This bone-chilling webinar will cover: A spine-tingling hands-on-keyboard scenario of a motivated and capable insider threat working with the ghoulish adversary. Use of realistic and terrifying exploits and offensive security tools to simulate adversary TTPs, and how organizations are able to hunt for them. A practical threat hunting session demonstrating true behavioral hunting that walks participants through not only how the attack was carried out, but also how they can hunt for this insidious behavior in their own environments.
View Video
Corelight

Take the Corelight challenge: Splunk's Boss of the SOC

Oct 18, 2021 By Ed Smith In Corelight

Looking for some threat hunting and incident response practice that's more game than work? Check out the new Capture the Flag (CTF) challenges from Corelight, now available on Splunk’s Boss of the SOC (BOTS) website - just in time for.conf! Our two on-demand BOTS modules will show you how Corelight data in Splunk can accelerate your processes and help analysts spend more time analyzing and less time fumbling with queries and gluing together data sources.

Read Post

RDP Forensics without endpoint visibility

Sep 21, 2021 By Corelight In Corelight
With increases in remote work, VPN and RDP services are prime targets for gaining unauthorized access to organizations. RDP services secured by passwords are subject to brute-force guessing and credential stuffing attacks, not to mention remote exploitation. Advisories are using RDP to gain initial access to organizations and then pivot to distribute and spread ransomware. In this technical training, we will take a deep dive look at threats to RDP services, adversarial TTP involving RDP, and explore how artifacts from encrypted RDP sessions are leveraged to build detections.
View Video
corelight

Former Symantec and Malwarebytes Executive Joins Corelight as Senior Vice President of Product

Sep 8, 2021 By Corelight In Corelight
Corelight, provider of the industry's first open network detection and response (NDR) platform, welcomes Clint Sand as its new senior vice president of product. In this role, Sand will be responsible for all aspects of the Corelight product portfolio, including product management, product design, roadmap, and strategy.
Read Post
corelight

Corelight Secures $75 Million in Series D Funding Led by Energy Impact Partners with Participation from H.I.G. Growth Partners, CrowdStrike and Capital One Ventures

Sep 2, 2021 By Corelight In Corelight
Corelight, provider of the industry's first open network detection and response (NDR) platform, has raised $75 million in Series D investment led by Energy Impact Partners (EIP).
Read Post

Catching SSH and RDP attacks without decryption

Aug 30, 2021 By Corelight In Corelight
With the rise in distributed workforces both SSH and RDP connections have proliferated as remote employees connect to sensitive internal environments and machines to do their job. Unfortunately, these remote-friendly protocols are also prime attack targets and once compromised give adversaries a clear path to move laterally, deploy ransomware, and more.
View Video

Detect Everything: Bring Google Scale NDR to your Security Operations

Aug 27, 2021 By Corelight In Corelight
Many organizations find that today’s security tools are not built for petabyte scale, long-term telemetry retention and are often cost prohibitive. Ingestion based pricing forces customers to limit what data is collected and retained, resulting in both more false positives and missed valid threats. Learn how enterprises can leverage all of their high-fidelity network data to gain a comprehensive, accurate and real-time understanding of your environment at any scale, on-prem or in the cloud.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.