%term

CrowdStrike Signal Transforms AI-Powered Threat Detection

Aug 6, 2025 By Chris Prall In CrowdStrike

Security teams don't need more alerts. They need the ability to detect what others miss. That's why we're excited to announce the general availability of CrowdStrike Signal, a new class of AI-powered detection that surfaces the stealthy threats others often overlook — before they escalate. CrowdStrike Signal represents a fundamental shift in how organizations detect and respond to modern threats.

Read Post

CrowdStrike

Read more about CrowdStrike Signal Transforms AI-Powered Threat Detection

Corelight data and LLMs

Jul 31, 2025 By Stan Kiefer In Corelight

Corelight has been an innovator and leader in AI and Large Language Model (LLM) adoption for almost 2 years. We introduced our first use of LLMs in our Open NDR platform Investigator in November of 2023. Since then, we have continued to push the boundaries of the possible by working with AI model builders on cybersecurity-specific training and expanding LLM use within Investigator to include data analysis and summaries.

Read Post

Corelight

Read more about Corelight data and LLMs

Corelight announces industry's first MCP server exposing detailed network data and alerts

Jul 31, 2025 By Ashish Malpani In Corelight

Corelight’s GenAI Accelerator Pack features the industry's first Model Context Protocol (MCP) server, specifically designed to facilitate easier access to detailed network data and alerts for cybersecurity AI agents and enhance the analysis of network security information. The announcement comes at a pivotal moment for cybersecurity.

Read Post

Corelight

Read more about Corelight announces industry's first MCP server exposing detailed network data and alerts

Codify to Fortify: The Strategic Advantage of Detection as Code

Jul 29, 2025 By Jose Enrique Hernandez In Splunk

As a security executive, how do you know if your organization can detect a certain attack? A talented, experienced team armed with advanced tooling can certainly generate confidence — but even then, detections can slip through the cracks if not properly codified.

Read Post

Splunk

Read more about Codify to Fortify: The Strategic Advantage of Detection as Code

Securing the Decentralized Workforce: Best Practices for Remote Web3 Teams

Jul 29, 2025 By SecuritySenses In SecuritySenses

The Web3 revolution is redefining how teams operate. Traditional office setups are being replaced by decentralized, remote-first environments. Developers, designers, marketers, and operators now collaborate across borders using blockchain-native tools. While this model offers unmatched flexibility, it also opens the door to serious security risks. As the number of Web3 remote jobs grows, so does the need for smarter, more robust security practices.

Read Post

SecuritySenses

Read more about Securing the Decentralized Workforce: Best Practices for Remote Web3 Teams

Unlock peak performance: hardware deduplication for enhanced network visibility

Jul 28, 2025 By Varun Bobhate In Corelight

In today's complex network environments, ensuring complete visibility while optimizing resource utilization is paramount. Duplicate network traffic can overwhelm your monitoring infrastructure, create redundant alerts for SecOps, consume valuable storage, and obscure critical insights, making it harder for Network Detection and Response (NDR) solutions to spot genuine threats or anomalies. Network Packet Brokers often offer deduplication as a feature but it can add complexity and cost.

Read Post

Corelight

Read more about Unlock peak performance: hardware deduplication for enhanced network visibility

Advanced attacks: EDR alone is not sufficient

Jul 24, 2025 By Corelight In Corelight

Your best defense against advanced attacks is your network. SOC teams need comprehensive network data to defend against attacks. Corelight combines industry-leading Zeek network metadata, multi-layered detections, packet capture (PCAP), and file analysis (YARA) for the best approach to network-driven defense. Disrupt attacks, address gaps within your security stack, and reduce risk to your organization with Corelight's NDR solution.

View Video

Corelight

Read more about Advanced attacks: EDR alone is not sufficient

How Threat Campaign Detection Helps Cut Through Alert Fatigue

Jul 7, 2025 By The Graylog Team In Graylog

Security fatigue gets attention for a reason. Phishing emails, authentication prompts, and constant vigilance all take a toll. But alert fatigue is the deeper, more destructive force. It overwhelms analysts, delays response, and creates blind spots that adversaries exploit. Security teams today are buried under noisy alerts and fragmented tooling. False positives waste time. Manual triage eats up valuable analyst hours. Eventually, burnout sets in and threats slip by. It is not a hypothetical risk.

Read Post

Graylog

Read more about How Threat Campaign Detection Helps Cut Through Alert Fatigue

What is Threat Detection and Response? An Actionable Guide

Jul 7, 2025 By Tanium In Tanium

Threat detection and response is the dynamic, ongoing process of monitoring, detecting, investigating, responding to, and remediating cyber threats.

Read Post

Tanium

Read more about What is Threat Detection and Response? An Actionable Guide

Detection and Response: Building Processes that Scale with Ryan Cox

Jul 3, 2025 By LimaCharlie In LimaCharlie

Ryan Cox, Senior Security Operations Engineer at Revinate, joined Defender Fridays to discuss how to build detection and response processes that scale while maintaining their effectiveness as threats and infrastructure expand.

View Video