The Last Watchdog

JULY 30, 2018

To use SIEMs to address today’s increasing list of attacks is akin to attempting to retrofit a minivan with a Ferrari engine on it. However, it has become apparent that they are no longer sufficient to protect enterprises from a growing list of threats. It requires a massive architecture overhaul. New approach needed. Active learning.

CISO 140

CISO Cyber Attacks Data collection Cybersecurity 140

Security Affairs

NOVEMBER 19, 2019

CERT-GIB’s report is based on data collected and analyzed by the Threat Detection System (TDS) Polygon as part of operations to prevent and detect threats distributed online in H1 2019 in more than 60 countries. More than 80% of all malicious files were disguised as .zip rar archive files. Dangerous email.

Ransomware 99

Ransomware Antivirus Malware Banking 99

Cisco Security

AUGUST 26, 2022

The AlienApp for Cisco Secure Endpoint enables you to automate threat detection and response activities between USM Anywhere and Cisco Secure Endpoint. Data collected from Umbrella can then be routed to Sumo’s Cloud SIEM, where it is then automatically normalized and applied to our rule’s engine.

Firewall 145

Firewall Authentication Passwords Threat Detection 145

Security Boulevard

MARCH 31, 2022

Data collection from FTP clients, IM clients. Also notable: the compromised user was a customer support engineer from a contracted third party (Sitel). With this in mind, remember that Lapsus$ does not always use RedLine to steal data. Autocomplete fields. Credit cards. All Gecko-based browsers (Mozilla, etc.).

Cybersecurity 98

Cybersecurity Social Engineering Passwords Malware 98

Security Affairs

NOVEMBER 15, 2018

According to Group-IB’s report published in September 2018, Silence gang members presumably were or are legally employed as pentesters and reverse engineers. Group-IB TDS (Threat Detection System) detected both phishing campaigns and signaled about the malicious activity. October attack: MoneyTaker .

Banking 111

Banking Computers and Electronics Phishing Cybercrime 111

Anton on Security

NOVEMBER 17, 2022

Now, this is really juicy: “Essential complexity is the complexity inherent in a given situation that cannot be removed from a problem definition, whereas accidental complexity is more fluid and can be resolved with engineering effort.” In detection content? Metrics and associated data collection? Escalation processes?

Engineering 100

Engineering Software Data collection Architecture 100

Cisco Security

AUGUST 26, 2021

The Cigent D3E integration with Cisco Secure Endpoint provides a highly effective automated response mechanism to threats detected on Windows 10 endpoints. Varonis is a pioneer in data security and analytics, specializing in software for data protection, threat detection and response, and compliance.

Technology 145

Technology Firewall VPN Authentication 145

eSecurity Planet

OCTOBER 11, 2022

A 2018 paper published by the Institute of Electrical and Electronics Engineers (IEEE) highlights a specific flaw with UEBA: “The negative part of applying machine learning in UEBA is the same drawbacks that any machine learning brings. Transparency is key whenever you’re collecting user data.

Advertising 126

Advertising Cybersecurity DDOS Data breaches 126

eSecurity Planet

AUGUST 15, 2022

Exabeam Fusion is the company’s threat detection, investigation, and response (TDIR) solution bringing together automated , next-generation SIEM and XDR capabilities. Beyond centralized log management, Exabeam Fusion includes a stack of security features to aid in an era of advanced threats. Exabeam Fusion.

Software 115

Software Small Business Marketing Firewall 115

Security Boulevard

NOVEMBER 17, 2022

Now, this is really juicy: “Essential complexity is the complexity inherent in a given situation that cannot be removed from a problem definition, whereas accidental complexity is more fluid and can be resolved with engineering effort.” In detection content? Metrics and associated data collection? Escalation processes?

Engineering 64

Engineering Software Data collection Architecture 64

eSecurity Planet

MARCH 17, 2023

Vulnerability Management Product Guides 8 Best Vulnerability Scanner Tools Top 10 Open Source Vulnerability Assessment Tools 12 Top Vulnerability Management Tools Threat Intelligence and Detection At the most basic level, threat detection strategies and tools monitor networks for suspicious and anomalous activity.

Network Security 121

Network Security Penetration Testing Firewall Software 121

eSecurity Planet

MAY 5, 2021

Despite the similarity in name to endpoint detection and response (EDR) technology, MDR providers are more like general managed security service providers (MSSPs) , operating on all layers of an organization’s infrastructure, including the network, endpoints, applications and other IT resources. Secureworks. Armor Anywhere.

Threat Detection 58

Threat Detection Technology Artificial Intelligence Engineering 58

CyberSecurity Insiders

SEPTEMBER 29, 2021

Section 40121: Enhancing Grid Security through Public-Private Partnership – The Secretary (Energy), in consultation with the Secretary of Homeland Security and the heads of other relevant Federal agencies, State regulatory authorities, industry stakeholders, and the Electric Reliability Organization, shall carry out a program— (A) to develop, (..)

Energy and Utilities 108

Energy and Utilities Cybersecurity Technology Architecture 108

Thales Cloud Protection & Licensing

NOVEMBER 5, 2024

Vendors’ attention is increasingly fragmented across various data-collecting and transactional platforms. As if things were not difficult enough, data collection in more states and countries is becoming stricter, with increased consumer protection laws leaving retailers applying tighter data privacy to their digital platforms.

Retail 71

Retail Data breaches Digital transformation Risk 71

Security Boulevard

JANUARY 18, 2024

Unlike typical API security solutions that focus primarily on detection and mitigation of threats, Salt's platform introduces the first-ever engine dedicated to API posture governance. We are thrilled to start off 2024 with these exciting new capabilities and look forward to sharing them with the world. Register here.

Risk 59

Risk Government Threat Detection Artificial Intelligence 59

Security Boulevard

APRIL 1, 2025

Wizs agentless data collection was key to this unification: by scanning the entire stack via cloud APIs with no agents to deploy, Wiz quickly populates the graph with comprehensive metadata from multicloud environments ( The World is a graph: How Wiz reimagines cloud security using a graph in Amazon Neptune | AWS Database Blog ).

Risk 52

Risk Internet Internet Cybersecurity 52

Security Boulevard

DECEMBER 10, 2021

Data collection failures still plague many SOCs. Now, again, one can also blame this on people and processes (especially, those people in IT who just didn’t give us the data). It’s far too often that vendors showcase a product’s abilities in it’s best and perfect use case, without little regard to scale.

Technology 59

Technology CISO Data collection Threat Detection 59

Security Boulevard

NOVEMBER 5, 2024

Vendors’ attention is increasingly fragmented across various data-collecting and transactional platforms. As if things were not difficult enough, data collection in more states and countries is becoming stricter, with increased consumer protection laws leaving retailers applying tighter data privacy to their digital platforms.

Retail 64

Retail Data breaches Digital transformation Risk 64

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status McAfee Cybersecurity solutions 2021 Acquired: Intel Claroty Industrial cybersecurity 2020 Private Illusive Networks Threat detection and response 2020 Private Jask Autonomous SOC 2018 Acquired: Sumo Logic RiskSense Vulnerability management 2018 Acquired: Ivanti Phantom Cyber SOAR 2017 Acquired: Splunk.

Cybersecurity 129

Cybersecurity Technology Marketing Healthcare 129

eSecurity Planet

JANUARY 12, 2024

Automated incident response and correlation enhance threat detection and resolution. Uses data partitioning to segment data for customizable visibility. Integrates with AWS, Azure, and other services for smooth data collection. Suitable for software engineering teams transitioning from ELK stacks.

Technology 118

Technology Encryption Threat Detection Marketing 118

eSecurity Planet

JANUARY 28, 2021

Its extended detection and response (XDR) solution tracks network traffic and automatically combines the information with machine-comprehended threat detection. Endpoint detection has never been more in-demand due to remote work. Darktrace – Threat detection. It has raised $332.5 SECURITI.ai. SECURITI.ai

Cybersecurity 114

Cybersecurity Threat Detection Artificial Intelligence Marketing 114

McAfee

NOVEMBER 12, 2020

More often we find the role of SOC analyst to be one of data wrangler – asking and answering key questions of the ‘data’ to determine if an attack is evident and if so, what is the scope and impact of the adversarial engagement. From Ismael Valenzuela , Senior Principal Engineer, McAfee.

Engineering 84

Engineering Data collection Risk Cyber Risk 84

Google Security

JANUARY 29, 2025

Last year, those investments included AI-powered threat detection, stronger privacy policies, supercharged developer tools, new industry-wide alliances, and more. In 2024, we used Googles advanced AI to improve our systems ability to proactively identify malware, enabling us to detect and block bad apps more effectively.

Government 102

Government Mobile Scams Data collection 102