Threat Detection

What is Threat Detection and Response?

Sep 27, 2024 By Fidelis Security In Fidelis Security

Attackers nowadays are good at setting up camp in networks and stealing important information. This means you need to be on your toes with top-notch threat spotting. You need something that can handle the whole attack process, from when they first break in to when they move around and take data.

Read Post

Fidelis Security

Read more about What is Threat Detection and Response?

The False Positive Problem with AI in Threat Detection | Razorthorn Security

Sep 27, 2024 By Razorthorn In Razorthorn

Josh Neil explains why large language models (LLMs) can exacerbate the issue of false positives in threat detection. Discover why more AI isn't always the answer in reducing alert noise.

View Video

Razorthorn

Read more about The False Positive Problem with AI in Threat Detection | Razorthorn Security

Feed me!

Sep 25, 2024 By Vince Stoffer In Corelight

Corelight has strengthened the Suricata integration within its Open NDR Platform, empowering customers with a custom ruleset, the Corelight Feed, designed to swiftly detect and help respond to emerging threats. With a new monthly update cycle, Corelight ensures that organizations stay ahead of the latest vulnerabilities and enhance their network security posture effortlessly.

Read Post

Corelight

Read more about Feed me!

Want better network visibility? Don't just go with the (net)flow

Sep 23, 2024 By Mark Overholser In Corelight

In the Black Hat Network Operations Center (NOC), the conference’s leadership team must assemble best-in-class technologies that complement each other to build and harden an enterprise-grade network in just a few days. Then, the NOC must continuously monitor and adapt the network throughout the course of the conference before dismantling it after the conference concludes.

Read Post

Corelight

Read more about Want better network visibility? Don't just go with the (net)flow

The Cybersecurity Challenge of Rare Threat Detection with LLMs | Razorthorn Security

Sep 23, 2024 By Razorthorn In Razorthorn

Josh Neil; highlights the difficulty LLMs face in detecting rare, complex cybersecurity threats. Discover why LLMs struggle with unique threat patterns and how this impacts threat detection accuracy.

View Video

Razorthorn

Read more about The Cybersecurity Challenge of Rare Threat Detection with LLMs | Razorthorn Security

Stronger Security with Corelight and Mandiant Managed Defense

Sep 18, 2024 By Allen Marin In Corelight

At Corelight, we’re thrilled when a respected cybersecurity leader like Mandiant introduces a new offering based on our solution. This week, Mandiant Managed Defense unveiled support for Corelight Open NDR, a move that strengthens our existing relationship and integration across the Google Cloud Security portfolio.

Read Post

Corelight

Read more about Stronger Security with Corelight and Mandiant Managed Defense

Corelight Open NDR Achieves VMware Ready for Telco Cloud Infrastructure Certification

Sep 17, 2024 By Lisa Karas In Corelight

Accelerate Your Hybrid Cloud Security with Corelight Open NDR, now in the VMware Marketplace Corelight’s Open NDR platform has achieved VMware Ready for Telco Cloud Infrastructure (TCI) certification and is now active in the VMware Marketplace.

Read Post

Corelight

Read more about Corelight Open NDR Achieves VMware Ready for Telco Cloud Infrastructure Certification

Do we need ITDR?

Sep 17, 2024 By Nivathan Athiganoor Somasundharam In SecuritySenses

There is a common question among CISOs, security practitioners, and IAM Engineers: "Do we need this new product category ITDR - Identity Threat Detection & Response?" I know, we already have so many Identity products purchased and implemented, like IDP - Identity providers, IGA - Identity Governance and Administration, PAM - Privileged Access Management, CIEM - Cloud Infra Entitlement management, SSO - Single Sign-On, etc. What is this new ITDR?

Read Post

SecuritySenses

Read more about Do we need ITDR?

How Cybersecurity Risk Assessments Will Need to Evolve for 2025

Sep 12, 2024 By SecuritySenses In SecuritySenses

2025 is drawing near, and the cybersecurity scene is changing quickly. Organizations must adapt how they undertake cybersecurity risk assessments in tandem with the ongoing evolution of technology and the escalating sophistication of cyber-attacks. In order to address the difficulties of the near future, cybersecurity risk assessments will need to change in ten key areas, as this essay examines.

Read Post

SecuritySenses

Read more about How Cybersecurity Risk Assessments Will Need to Evolve for 2025

Detecting Abuse of NetSupport Manager

Sep 11, 2024 By Corelight Labs Team In Corelight

Welcome to the latest hunt from Corelight Labs! This blog continues our tradition of analyzing trending TTPs on Any.Run and writing detectors for them.

Read Post