Every year, the role of AI in cybersecurity grows more prominent. This is especially true in the security operations center (SOC), where AI-native detection and GenAI-fueled workflows are advancing cyber defense and shaping the end-to-end analyst experience. But while defenders are using AI to operate with greater speed and scale, adversaries are following suit, using Dark AI … [Read more...] about AI Innovation in the Spotlight at Fal.Con 2024
Spotlight
Product Spotlight: Power Search for Log Restore
We’re excited to announce significant improvements to our Archive+Restore capabilities – which enables low-cost long term log storage in AWS S3 or Azure Blob, while providing access to ingest those logs into Logz.io at any time.The first enhancement is Power Search, which will make it faster to restore logs from archived log data in AWS S3 (and soon for Azure Blob) in our Open … [Read more...] about Product Spotlight: Power Search for Log Restore
Product Spotlight: Logz.io Data Optimization Hub
To help our customers reduce their overall observability costs, we’re excited to announce the Data Optimization Hub as part of our Open 360™ platform. The new hub inventories all of your incoming telemetry data, while providing simple filters to remove any data you don’t need.Gone are the days of paying for observability data you never use.Why We Built Data Optimization Hub, … [Read more...] about Product Spotlight: Logz.io Data Optimization Hub
Product Spotlight: Logz.io Service Performance Monitoring
We believe that one of the most powerful capabilities added to the Logz.io Observability Platform in recent months is our new Service Performance Monitoring (SPM) feature set. As you may have seen earlier this year, Logz.io was named a Visionary in the 2022 Gartner® Magic Quadrant(™) for Application Performance Monitoring and Observability. To that end, SPM is a cornerstone for … [Read more...] about Product Spotlight: Logz.io Service Performance Monitoring
Spotlight On: Ankitaa Bhowmick | More Flexibility Means More Time for Family
Flexibility is more than just a buzzword. It’s now as much of a necessity for companies as it is for the people they employ. And while many companies have been trying to find ways to pivot policies to become more accommodating of the shift to remote work, here at Elastic, being flexible and distributed has been part of our source code from the start. For Ankitaa Bhowmick, a … [Read more...] about Spotlight On: Ankitaa Bhowmick | More Flexibility Means More Time for Family
How to Automate Workflows with Falcon Spotlight
Introduction Falcon Spotlight leverages the existing Falcon Agent to assess the status of vulnerabilities across the environment. While visibility and filtering capabilities are part of the user interface, this article will document integration options that CrowdStrike provides to help customers effectively operationalize Spotlight’s vulnerability … [Read more...] about How to Automate Workflows with Falcon Spotlight
Falcon Spotlight ExPRT.AI Helps Federal Agencies Meet CISA Mandate
The Cybersecurity and Infrastructure Security Agency (CISA) issued a mandate on November 2, 2021, for all U.S. federal agencies to fix hundreds of known vulnerabilities. Binding Operational Directive 22-01 (BOD 22-01) compels all federal departments and agencies to specifically address the vulnerabilities in the published catalog to protect and safeguard valuable federal data … [Read more...] about Falcon Spotlight ExPRT.AI Helps Federal Agencies Meet CISA Mandate
Lemon Duck brings cryptocurrency miners back into the spotlight
Cisco Blogs / Security / Threat Research / Lemon Duck brings cryptocurrency miners back into the spotlight Attackers are constantly reinventing ways of monetizing their tools. Cisco Talos recently discovered a complex campaign employing a multi-modular botnet with multiple ways to spread. This threat, known as “Lemon Duck,” has a cryptocurrency mining payload that … [Read more...] about Lemon Duck brings cryptocurrency miners back into the spotlight
How to Use Custom Filters in Falcon Spotlight
Introduction This article and video will provide an overview of the power of custom filters in Falcon Spotlight. Spotlight provides customers with realtime data about the vulnerabilities in the environment. With custom filters, organizations can quickly sort that data to focus on critical assets, vulnerabilities and remediations. Those filters can then be saved for repeat use … [Read more...] about How to Use Custom Filters in Falcon Spotlight
Threat Spotlight: Valak Slithers Its Way Into Manufacturing and Transportation Networks
Cisco Blogs / Security / Threat Research / Threat Spotlight: Valak Slithers Its Way Into Manufacturing and Transportation Networks By Nick Biasini, Edmund Brumaghin and Mariano Graziano. Threat summary Attackers are actively distributing the Valak malware family around the globe, with enterprises, in particular, being targeted. These campaigns make use of existing … [Read more...] about Threat Spotlight: Valak Slithers Its Way Into Manufacturing and Transportation Networks