%term

How DDR Can Bolster Your Security Posture

May 14, 2024 By Josh Breaker-Rolfe In AT&T Cybersecurity

Today’s threat landscape is as dangerous as it has ever been. Global unrest, emerging technologies, and economic downturn all contribute to persistently high cybercrime rates and a dire need for organizations of all types to improve their security posture.

Read Post

AT&T Cybersecurity

Read more about How DDR Can Bolster Your Security Posture

Dynamic Bad Actor Scoring in Coralogix

May 9, 2024 By Chris Cooney In Coralogix

Bad bots, hackers, and other malicious agents can be tracked by a huge volume of metrics – session activity, HTTP headers, response times, request volume & cadence, and more. This complexity has created a market for siloed, complex, and extremely expensive tools. In contrast, Coralogix can consume simplistic data, like CDN logs, and derive complex, dynamically changing scores. When coupled with built-in cost optimization and the wider platform features, this makes a very compelling case.

Read Post

Coralogix

Read more about Dynamic Bad Actor Scoring in Coralogix

The Road to CTEM, Part 1: Breaking Down the 5 Phases

May 9, 2024 By SafeBreach In SafeBreach

Continuous threat exposure management (CTEM) is a formal program to manage cyber risk that allows organizations to enhance and optimize their overall cybersecurity posture. As outlined by Gartner, CTEM offers a cyclical approach to finding and mitigating threat exposure—which is the accessibility and exploitability of digital and physical assets—in an ongoing, proactive, and prioritized way.

Read Post

SafeBreach

Read more about The Road to CTEM, Part 1: Breaking Down the 5 Phases

Next-Generation SIEM: Corelight is the Data of Choice

May 7, 2024 By Todd Wingler In Corelight

For years, the mantra for achieving visibility into potential threats has been the trio of EDR, NDR, and SIEM. These components form the foundation of a robust security posture, with EDR and NDR offering the depth and breadth needed to monitor activities across endpoints and networks.

Read Post

Corelight

Read more about Next-Generation SIEM: Corelight is the Data of Choice

Evolving Detection Engineering Capabilities with BAS

May 1, 2024 By SafeBreach In SafeBreach

Watch this on demand webinar as SafeBreach experts explore how a BAS program can enable and improve detection engineering capabilities in large enterprises.

View Video

SafeBreach

Read more about Evolving Detection Engineering Capabilities with BAS

Fuel for Security AI

Apr 30, 2024 By Brian Dye In Corelight

The big idea behind Corelight has always been simple: ground truth is priceless. What really happened, both now and looking back in time. Whether it is used to detect attacks, investigate routine alerts, respond to new vulnerabilities or a full scale incident response, the constant is that ground truth makes everything in security better. We have no claim of authorship here. By contrast, we learn from the world’s most accomplished defenders through their use of Zeek® and Suricata®.

Read Post

Corelight

Read more about Fuel for Security AI

Webinar: Incorporating Digital Risk Exposure in Your Threat Detection Strategy

Apr 26, 2024 By Kroll In Kroll

Watch as Kroll experts Wojcieszek and Scott Hanson outline the key benefits of incorporating surface, deep and dark web intelligence into your threat detection and response plans. During the session, they discuss the top use cases of digital risk protection and the best approaches to mapping out and reducing your digital risk across all areas of the internet. They also outline how security teams can use this external threat intelligence to improve their threat detection and response efforts and get wider visibility across the attack lifecycle.

View Video

Kroll

Read more about Webinar: Incorporating Digital Risk Exposure in Your Threat Detection Strategy

Streamlining Incident Response: How CrowdStrike Falcon EDR integration enhances threat detection

Apr 24, 2024 By Sahidya Devadoss In Corelight

In the ever-evolving landscape of cybersecurity threats, staying ahead requires more than just detection; it demands comprehensive correlation and analysis for informed decision-making. Understanding the context surrounding an alert is important to effectively mitigate risk. That's why we're thrilled to announce the integration of CrowdStrike Falcon EDR with Investigator, part of Corelight’s Open NDR Platform.

Read Post

Corelight

Read more about Streamlining Incident Response: How CrowdStrike Falcon EDR integration enhances threat detection

EDR - The Multi-Tool of Security Defenses

Apr 22, 2024 By Trustwave In Trustwave

This is Part 8 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The full series can be found here. If your organization has computers, and I’m sure it does, then it's likely it has an Endpoint Detection and Response (EDR) solution installed. Since the capabilities of EDR solutions have changed over the years, it’s recommended to re-evaluate the solution’s features periodically to ensure it is up to date.

Read Post

Trustwave

Read more about EDR - The Multi-Tool of Security Defenses

The Dark Side of EDR: Repurpose EDR as an Offensive Tool

Apr 19, 2024 By Shmuel Cohen In SafeBreach

Endpoint detection and response (EDR) solutions have become a key component of many enterprise endpoint security strategies, resulting in a forecasted market value close to $17 billion by 2030. This is due in no small part to the increase in remote work following the COVID-19 pandemic, the resulting bring-your-own-device (BYOD) trend in which employees use personal devices for work-related activities, and the constant evolution of cyber threats.

Read Post