Threat Detection

Avoiding a false sense of security

Nov 4, 2022 By Dan Green, Head of Enablement In JUMPSEC

Cyber threat detection and response is a well-established area of cyber security, with a multitude of product and service types and definitions. Yet rather than make it easier for organisations to identify what they need, this often contributes to industry noise and hype, creating a marketplace that can be challenging to navigate for buyers who are uncertain of what they need, or why they need it.

Read Post

JUMPSEC

Read more about Avoiding a false sense of security

Network Detection and Incident Response with Open Source Tools

Nov 2, 2022 By Corelight In Corelight

When conducting incident response, EDR and firewall technologies can only show you so much. The breadth of network traffic provides an unrivalled source of evidence and visibility. Open-source security technologies such as Zeek, Suricata, and Elastic can deliver powerful network detection and response capabilities, furthermore the global communities behind these tools can also serve as a force multiplier for security teams, often accelerating response times to zero-day exploits via community-driven intel sharing.

View Video

Corelight

Read more about Network Detection and Incident Response with Open Source Tools

Managed Detection and Response (MDR) Buyer's Guide

Oct 31, 2022 By Kroll In Kroll

All organizations should have access to the skills needed to detect and contain threats. But, typically, only the very largest enterprises can afford the millions in annual staff and infrastructure investments required to maintain a Security Operations Center (SOC).

Read Post

Kroll

Read more about Managed Detection and Response (MDR) Buyer's Guide

What Security Teams Want from MDR Providers

Oct 31, 2022 By Arctic Wolf In Arctic Wolf

As security teams struggle to scale security programs to meet both attack surface and threat landscape growth and complexity, many are engaging managed detection and response (MDR) providers to accelerate their operating models. With no end in sight for the cybersecurity skills shortage, MDR services can bring immediate expert resources online, together with proven, best-of-breed processes and tools that can help security teams gain control and set themselves up for future security program success.

Read Post

Arctic Wolf

Read more about What Security Teams Want from MDR Providers

From Data to Deployment: How Human Expertise Maximizes Detection Efficacy Across the Machine Learning Lifecycle

Oct 27, 2022 By Calin Miron - Liviu Arsene In CrowdStrike

Security is a data problem. One of the most touted benefits of artificial intelligence (AI) and machine learning (ML) is the speed at which they can analyze potentially millions of events and derive patterns out of terabytes of files. Computational technology has progressed to the point where computers can process data millions of times faster than a human could.

Read Post

CrowdStrike

Read more about From Data to Deployment: How Human Expertise Maximizes Detection Efficacy Across the Machine Learning Lifecycle

Improve Response in the Threat Detection Response Equation - Webinar

Oct 24, 2022 By Torq In Torq

Operationalizing data at the same scale it’s collected is vital, yet 55% of organizations surveyed by analyst firm ESG said they don’t have the skills or the time to create automations or playbooks to manage all threat data at machine speed. @Enterprise Strategy Group ESG and @Torq will explore the landscape of EDR and XDR systems and show how teams can approach the challenges of operationalizing the threat data they provide with different approaches to automation.

View Video

Torq

Read more about Improve Response in the Threat Detection Response Equation - Webinar

"Easy" button for cloud NDR visibility

Oct 18, 2022 By Todd Morneau In Corelight

As organizations continue to rapidly adopt cloud services, they struggle to expand network detection and response (NDR) capabilities to their hybrid and multi-cloud environments. Network visibility is critical for security operations center (SOC) teams to secure their cloud environments and ensure they can elevate threat detection and incident investigation capabilities. However, traditional NDR solutions require management, configuration and often lack the security context needed.

Read Post

Corelight

Read more about "Easy" button for cloud NDR visibility

How to Reduce False Positives in Data Leak Detection - UpGuard

Oct 13, 2022 By Edward Kost In UpGuard

According to a 2021 study by UpGuard, over 51% of analyzed Fortune 500 companies were unknowingly leaking sensitive metadata in public documents - data leaks that could be very useful in a reconnaissance campaign preceding a major data breach. Without timely detection solutions, all corporate (and personal) accounts impacted by data leaks are at a critical risk of compromise, which also places any associated private internal networks at a high risk of unauthorized access and sensitive data theft.

Read Post

UpGuard

Read more about How to Reduce False Positives in Data Leak Detection - UpGuard

BOD 23-01: Better visibility to reduce risk

Oct 10, 2022 By Jean Schaffer In Corelight

“Knowing what’s on your network is the first step for any organization to reduce risk.” -CISA Director, Jen Easterly. On October 3, the Cybersecurity and Infrastructure Security Agency (CISA) issued Binding Operational Directive (BOD) 23-01: Improving Asset Visibility and Vulnerability Detection on Federal Networks.

Read Post

Corelight

Read more about BOD 23-01: Better visibility to reduce risk

Endpoint Detection and Response - you need it on mobile devices too

Oct 10, 2022 By Hank Schless In AT&T Cybersecurity

Welcome to the final episode in our blog series focused on Mobile Endpoint Security. The first two episodes detailed the protections necessary to secure data accessed by remote workers (Endpoint security and remote work) and best practices for combating the threat of ransomware 5 ways to prevent Ransomware attacks).

Read Post