This week we announced the general availability of CrowdStrike’s newest innovation, Falcon XDR, and I couldn’t be more excited. Using our same single, lightweight agent architecture, Falcon XDR enables security teams to bring in third-party data sources for a fully unified solution to rapidly and efficiently hunt and eliminate threats across multiple security domains. As George … [Read more...] about The Right Way to Extend Detection and Response
Response
Logz.io Security Update: Log4j / Log4Shell Vulnerability Response
On December 9, a severe remote code vulnerability was revealed in Apache’s Log4J library, a Java-based logging tool widely used in applications around the world. This vulnerability allows an attacker who can control log messages to execute arbitrary code loaded from attacker-controlled servers – impacting a broad range of services and applications.Logz.io has been aware of the … [Read more...] about Logz.io Security Update: Log4j / Log4Shell Vulnerability Response
CrowdStrike Services Releases Free Incident Response Tracker
The CrowdStrike Incident Response Tracker is a convenient spreadsheet that includes sections to document indicators of compromise, affected accounts, compromised systems and a timeline of significant events CrowdStrike incident response teams have leveraged this type of tracker in thousands of investigations Download the CrowdStrike Incident Response Tracker Template During a … [Read more...] about CrowdStrike Services Releases Free Incident Response Tracker
Accelerate Troubleshooting, Forensics and Response With Fast and Efficient Search
This blog was originally published Nov. 22, 2021 on humio.com. Humio is a CrowdStrike Company. Whether you’re diagnosing a system outage, mitigating a malicious attack or trying to get to the bottom of an application-response-time issue, speed is critical. Pinpointing and resolving issues quickly and easily can mean the difference between success and crisis for any business, … [Read more...] about Accelerate Troubleshooting, Forensics and Response With Fast and Efficient Search
Download the Essential Guide to Response Automation
In the classic children's movie 'The Princess Bride,' one of the characters utters the phrase, "You keep using that word. I do not think it means what you think it means." It's freely used as a response to someone's misuse or misunderstanding of a word or phrase. "Response Automation" is another one of those phrases that have different meanings to different people. It's … [Read more...] about Download the Essential Guide to Response Automation
SecureX threat response Turnkey Integrations
SecureX turns one year old next month. It has been quite a journey from the first announcement at RSA Conference 2020, when there was one 3rd party integration (VirusTotal), to the release of SecureX the summer of 2020 with a large ecosystem. When SecureX was launched, we had several turnkey partner integrations into SecureX, like the Splunk add-on and QRadar extension. … [Read more...] about SecureX threat response Turnkey Integrations
Cyber Hygiene: An ounce of prevention is worth a pound of incident response
Today’s incident response teams operate like hospital emergency rooms (ERs). When an alert comes in—malware infection, intrusion, anomalous behavior, etc.—a specialist is called in for diagnosis and remediation. In cybersecurity, as in healthcare, good preventive care can improve outcomes and reduce costs. At Cisco, I’ve been a part of a team responsible for imagining a … [Read more...] about Cyber Hygiene: An ounce of prevention is worth a pound of incident response
Extending Detection into Automated Response with SecureX and Secure Cloud Analytics
Networks span across the enterprise, campus, branch, and into the cloud. Resources that enable agile operational models to allow the business to anticipate and respond to change are expanding the attack surface and bring with them more complexity. Complexity that attackers are taking advantage of. Meanwhile an ever-increasing amount of sensitive and legally protected data is … [Read more...] about Extending Detection into Automated Response with SecureX and Secure Cloud Analytics
Report to Your Management with the Definitive ‘Incident Response for Management’ Presentation Template
Security incidents occur. It's not a matter of 'if' but of 'when.' There are security products and procedures that were implemented to optimize the IR process, so from the 'security-professional' angle, things are taken care of.However, many security pros who are doing an excellent job in handling incidents find effectively communicating the ongoing process with their … [Read more...] about Report to Your Management with the Definitive ‘Incident Response for Management’ Presentation Template
2021 Security Outcomes Study: Timely Incident Response as a Business Enabler
Anyone who has ever observed or participated in a dance rehearsal is familiar with the count-off cadence, 5, 6, 7, 8. The same is true of musicians who count at the beginning of a piece, or an athlete awaiting the starting signal. These indicators alert us to the same thing: Be ready NOW. Cybersecurity has a set of starting signals as well, but they differ in one aspect. In … [Read more...] about 2021 Security Outcomes Study: Timely Incident Response as a Business Enabler