Threat Detection

Take the Corelight challenge: Splunk's Boss of the SOC

Oct 18, 2021 By Ed Smith In Corelight

Looking for some threat hunting and incident response practice that's more game than work? Check out the new Capture the Flag (CTF) challenges from Corelight, now available on Splunk’s Boss of the SOC (BOTS) website - just in time for.conf! Our two on-demand BOTS modules will show you how Corelight data in Splunk can accelerate your processes and help analysts spend more time analyzing and less time fumbling with queries and gluing together data sources.

Read Post

Corelight

Read more about Take the Corelight challenge: Splunk's Boss of the SOC

Splunk and Mandiant: Formidable Defense Against Attackers

Oct 15, 2021 By Jane Wong In Splunk

The security landscape is ever-changing, intensified by more sophisticated threats, and an increasing number of employees working from home leading to an expanding attack surface. Security professionals are tasked with maintaining a secure environment against a plethora of threats, manifested in thousands of alerts and events that are generated by security controls every day.

Read Post

Splunk

Read more about Splunk and Mandiant: Formidable Defense Against Attackers

Feroot Security Inspector - Get to know your client-side attack surface

Oct 14, 2021 By Feroot In Feroot

See Feroot Security Inspector in action. Learn how you can deploy client-side JavaScript security monitoring to detect Magecart, e-skimming, formjacking, JavaScript vulnerabilities, and other threats to your customer-facing web applications.

View Video

Feroot

Read more about Feroot Security Inspector - Get to know your client-side attack surface

WhiteSource Cure: Automated Remediation for Developers

Oct 7, 2021 By Cobi Tal In Mend

Keeping up with today’s rapidly evolving threat landscape is an ongoing battle for software development organizations, as many struggle to keep their assets and customers secure while keeping up with the competitive pace of software delivery.

Read Post

Mend

Read more about WhiteSource Cure: Automated Remediation for Developers

Microsec.ai Launches First Solution to Deliver Agentless Runtime Protection for Multi-cloud Infrastructure as a Service

Oct 5, 2021 By Microsec.ai

Continuous monitoring of network traffic, data loss prevention, and responsive self-healing protection from threats to cloud-native applications.

Read Post

Read more about Microsec.ai Launches First Solution to Deliver Agentless Runtime Protection for Multi-cloud Infrastructure as a Service

NetMotion by Absolute Appoints Cloud Distribution as UK Distributor for new Two-Tier Channel

Sep 28, 2021 By Nuvias Group

Enabling resellers to take advantage of SASE growth opportunities.

Read Post

Read more about NetMotion by Absolute Appoints Cloud Distribution as UK Distributor for new Two-Tier Channel

The meaning behind XDR: A beginner's guide to extended detection and response

Sep 22, 2021 By Belinda Streak In AT&T Cybersecurity

In the world of threat detection and response, alert fatigue and tool sprawl are real problems. Security professionals are struggling to manage different tools and control points and still relying on manual processes, which results in security that is fragmented and reactive. Analysts need better visibility and control, more context, and better use of automation so they can cut through the noise and respond to threats faster and more effectively.

Read Post

AT&T Cybersecurity

Read more about The meaning behind XDR: A beginner's guide to extended detection and response

RDP Forensics without endpoint visibility

Sep 21, 2021 By Corelight In Corelight

With increases in remote work, VPN and RDP services are prime targets for gaining unauthorized access to organizations. RDP services secured by passwords are subject to brute-force guessing and credential stuffing attacks, not to mention remote exploitation. Advisories are using RDP to gain initial access to organizations and then pivot to distribute and spread ransomware. In this technical training, we will take a deep dive look at threats to RDP services, adversarial TTP involving RDP, and explore how artifacts from encrypted RDP sessions are leveraged to build detections.

View Video

Corelight

Read more about RDP Forensics without endpoint visibility

Former Symantec and Malwarebytes Executive Joins Corelight as Senior Vice President of Product

Sep 8, 2021 By Corelight In Corelight

Corelight, provider of the industry's first open network detection and response (NDR) platform, welcomes Clint Sand as its new senior vice president of product. In this role, Sand will be responsible for all aspects of the Corelight product portfolio, including product management, product design, roadmap, and strategy.

Read Post

Corelight

Read more about Former Symantec and Malwarebytes Executive Joins Corelight as Senior Vice President of Product

Corelight Secures $75 Million in Series D Funding Led by Energy Impact Partners with Participation from H.I.G. Growth Partners, CrowdStrike and Capital One Ventures

Sep 2, 2021 By Corelight In Corelight

Corelight, provider of the industry's first open network detection and response (NDR) platform, has raised $75 million in Series D investment led by Energy Impact Partners (EIP).

Read Post