Blog & Resources

Improve Cybersecurity with Intelligence and a Better Sandbox

Improve Cybersecurity with Intelligence and a Better Sandbox

In our last post, we talked about the rise of file-less malware that leaves little evidence of a cyberattack. It’s difficult enough to defend against known security threats, and virtually impossible to prevent these sneak attacks. That’s why organizations need an incident response plan for detecting security events and taking steps to minimize the damage.

Getting a Clue About Sneaky New Malware

Getting a Clue About Sneaky New Malware

“Clueless.” That’s the name of a 1995 teen comedy that became a surprise box-office hit and a cultural touchstone for an entire generation of Americans. It’s also a pretty good description of an insidious new malware threat that possesses none of the customary indicators of a network intrusion.

How AlienVault USM Improves upon Traditional SIEM

How AlienVault USM Improves upon Traditional SIEM

In the previous post, we discussed the recent uptick in adoption of security information and event management (SIEM) solutions, and why SIEM will continue to be a primary focus of IT investments for the next few years. SIEM provides visibility into all sources of security data across the network and integrates this data in a single solution.

Why SIEM Is Driving New Security Investments

Why SIEM Is Driving New Security Investments

As more security managers embrace a proactive approach to security and prioritize real-time threat analysis, detection and response, spending on security information and event management (SIEM) solutions continues to increase. While Gartner has predicted 5 percent to 10 percent annual growth in the overall IT security market through 2020, sales of SIEM software rose by 15.8 percent in 2016.

SIEM combines security information management (SIM) and security event management (SEM) into a single solution, enabling organizations to take a more holistic, integrated approach to security.

Detective Work

Detective Work

SIEM systems help overworked IT teams wade through alerts and event logs to better detect and respond to security incidents.

Common sense would dictate that the longer it takes to discover a security breach, the greater the potential damage. Unfortunately, insider attacks, zero-day exploits and advanced persistent threats are increasingly difficult to detect, giving cybercriminals the advantage of lengthy “dwell times” in compromised systems and networks.

Limiting Risk

Limiting Risk

Increasing cyberattacks underscore the value of cyber insurance.

Virtually all organizations are now dependent on technology to one degree or another, which means they are at risk of cybercrime. Given the increasing frequency and sophistication of threats, it is no surprise that there is growing interest in cyber insurance.

Understanding the Value of Flash

Understanding the Value of Flash

With dramatic performance and capacity gains, flash storage delivers a lot of bang for the buck.

Flash storage has made significant inroads into the data center in recent years, as more organizations seek to tap the performance advantages of flash to support their most demanding workloads.

Unmasking Threats in Encrypted Web Traffic

Unmasking Threats in Encrypted Web Traffic

Cybersecurity is a cat-and-mouse game in which IT professionals and cybercriminals continually refine their tactics in an attempt to stay one step ahead of one another. The evolution of web traffic encryption provides a good case study of this process.

Studies show that more than half of all web traffic is now encrypted, largely due to increased usage of HTTPS, the secure version of the Hypertext Transfer Protocol.