Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Corelight

Unlock peak performance: hardware deduplication for enhanced network visibility

Jul 28, 2025 By Varun Bobhate In Corelight
In today's complex network environments, ensuring complete visibility while optimizing resource utilization is paramount. Duplicate network traffic can overwhelm your monitoring infrastructure, create redundant alerts for SecOps, consume valuable storage, and obscure critical insights, making it harder for Network Detection and Response (NDR) solutions to spot genuine threats or anomalies. Network Packet Brokers often offer deduplication as a feature but it can add complexity and cost.
Read Post

Advanced attacks: EDR alone is not sufficient

Jul 24, 2025 By Corelight In Corelight
Your best defense against advanced attacks is your network. SOC teams need comprehensive network data to defend against attacks. Corelight combines industry-leading Zeek network metadata, multi-layered detections, packet capture (PCAP), and file analysis (YARA) for the best approach to network-driven defense. Disrupt attacks, address gaps within your security stack, and reduce risk to your organization with Corelight's NDR solution.
View Video
Corelight

Data driven detection: Corelight's approach to AI-powered NDR

Jul 2, 2025 By Brian Dye In Corelight
The Gordian knot of any detection strategy is knowing that two conflicting ideas are both true. On one hand, every SOC needs as much accurate detection coverage as they can get to find and disrupt attacks. On the other, the attackers you REALLY care about will find a way to bypass those detections so you need the ground truth of the attacker behavior on your network. The only answer is to have both: the absolute best data and the broadest detection suite possible on top of it.
Read Post
Corelight

Empowering your LLMs: Unlocking cybersecurity queries with Open WebUI knowledge bases

Jul 2, 2025 By Keith J. Jones In Corelight
In the rapidly evolving landscape of large language models (LLMs), the ability to access and synthesize vast amounts of information is paramount. While LLMs excel at generating creative text and understanding complex prompts, their knowledge is often limited to the data used during their training. This is where knowledge bases (a.k.a.
Read Post
Corelight

How EDR evasion is changing threat detection

Jun 26, 2025 By Ashish Malpani In Corelight
Endpoint Detection and Response (EDR) and Security Information and Event Management (SIEM) have become integral to modern SecOps architecture and threat detection capabilities. However, the urgency of the situation is clear—attackers are deploying increasingly sophisticated techniques to bypass threat detection centered on these systems.
Read Post
Corelight

Corelight Named Leader and Outperformer in the 2025 GigaOm Radar for Network Detection and Response (NDR) Solutions

Jun 16, 2025 By Ashish Malpani In Corelight
We’re thrilled to announce that Corelight has been ranked a Leader and Outperformer in the 2025 GigaOm Radar for Network Detection and Response (NDR) Solutions. NDR solutions are essential for continuous real-time monitoring and analysis of network traffic. Corelight's Open NDR excels at detecting known and unknown threats across on-premises, cloud, and hybrid environments, leveraging cutting-edge technologies such as artificial intelligence, machine learning, and behavioral analytics.
Read Post

How Corelight Deployed Zeek at 20 Sites in 4 Months After 7-Year Stalemate

Jun 5, 2025 By Corelight In Corelight
Corelight CEO Brian Dye shares the story of the company’s first multi-million-dollar customer—a team that had spent seven years trying to operationalize Zeek using another commercial vendor. With Corelight, they were up and running across 20 sites in just four months. This story highlights the foundational value Corelight provides: a hardened, scalable Zeek deployment that unlocks visibility, incident response, and threat hunting at scale.
View Video

How an Energy Customer Used FERC 887 Compliance to Boost Security

Jun 5, 2025 By Corelight In Corelight
Corelight CEO Brian Dye shares how a customer in the energy sector turned a mandatory compliance project into a broader security win. Brought in to meet FERC 87 monitoring requirements for bulk electric systems, Corelight also helped advance their security operations. The customer used the compliance mandate not just to check a box—but to gain meaningful visibility and security value from day one.
View Video

Inside the SectorCERT Denmark Attack: How Corelight Helped Stop a Coordinated Campaign

Jun 4, 2025 By Corelight In Corelight
Corelight CEO Brian Dye recounts how Corelight supported SectorCERT—an alliance of energy companies in Denmark—during one of the most advanced attack sequences he’s seen. The coordinated campaign targeted a shared firewall vulnerability across nearly a dozen organizations. Corelight provided the critical visibility and detection that helped defenders stop the first wave—and stay ahead of a second, modified attack just weeks later. The incident became a model of collaboration and response across national infrastructure.
View Video

How Corelight Helped a Customer Reject a $10M Ransomware Demand

Jun 4, 2025 By Corelight In Corelight
Corelight CEO Brian Dye shares the high-stakes story of a customer under a $10 million ransomware attack. The attackers claimed to have stolen sensitive IP—but with Corelight, the customer had the network visibility to verify exactly what was taken. The result? They confirmed the stolen data was limited and non-critical, enabling them to confidently deny the ransom demand. This powerful story illustrates the difference between “I think” and “I know”—and how that clarity can drive executive confidence, legal defensibility, and real-world savings.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.