Google Cloud’s Chronicle will now offer curated threat detection as part of its analytics initiative in the Chronicle SecOps suite. Credit: Magdalena Petrova Google Cloud Wednesday announced the general availability of what it calls “curated detection” for its Chronicle security analysis platform. The new detection feature leverages the threat intelligence that Google gains from protecting its own user base into an automated detection service that covers everything from ransomware, infostealers and data theft to simple misconfigured systems and remote access tools.The new product will integrate authoritative data sources like MITRE ATT&CK to help organizations contextualize and better understand potential threats, as well as providing constantly updated threat information from Google’s own security team.Google Cloud has made two recent security updates to its own products—including built-in DDoS protection and API security—but it’s important to recognize that, while curated detection builds on the company’s in-house expertise, Chronicle is very much a product to be sold to everyone, including non-Google Cloud customers. Chronicle’s new features don’t make it a full-fledged managed detection and response (MDR) service—where vendors manage detection and response for customers in their infrastructure—but the market for threat detection in general is growing, according to Gartner vice president and distinguished analyst Neil MacDonald. Gartner projects the MDR market to grow at 49% year-over-year, on an already sizeable $2.5 billion in annual revenue. The technology’s popularity is largely a function of the ever-increasing complexity of modern security, and the increasing knowledge gap among in-house security teams, he says.“Every organization is under attack, every organization wants to do a better job detecting and responding to these events and every organization struggles with finding staff to handle it,” MacDonald says. “So the idea of turning to a third party to handle it on their behalf makes a lot of sense.” The announcement for the revamped Chronicle announcement is also likely a response to rival Microsoft, which introduced a similar set of managed detection and response services earlier this year. With independent companies like CrowdStrike, Arctic Wolf and Red Canary making major headway in the sector, it’s no surprise that powerhouses like Microsoft and Google want to follow suit and claim a piece of the pie.“It’s important to understand that when Google brought in Chronicle [out of its X research subsidiary], their intention was to enter the broader security information and event management space to compete with Microsoft’s Sentinel.”(This story has been updated to clarify the scope of Chronicle’s curated detection service.) Related content brandpost Sponsored by Sans Institute Clock is ticking for companies to prepare for EU NIS2 Directive Many companies are still not ready for the impact of NIS2, but SANS can help them prepare. By Laura McEwan May 15, 2024 3 mins Security feature Backlogs at National Vulnerability Database prompt action from NIST and CISA A crisis at the key US service for ranking vulnerabilities has been fueled by short resources and an explosion of security flaws as the volume of software production increases. By John Mello Jr. May 15, 2024 10 mins Threat and Vulnerability Management Security Practices Vulnerabilities news FBI warns Black Basta ransomware impacted over 500 organizations worldwide CISA advisory includes indicators of compromise and TTPs that can be used for threat hunting. By Lucian Constantin May 14, 2024 6 mins Ransomware Phishing Healthcare Industry news Australian federal budget outlines investment in cybersecurity The Australian government announced its 2024-25 federal budget and CSO has selected highlights that indicate how much will go towards cybersecurity and in what areas. By Samira Sarraf May 14, 2024 5 mins Fraud Protection and Detection Software Data and Information Security PODCASTS VIDEOS RESOURCES EVENTS SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe