DATA SECURITY

WafCharm Provides Breakthrough Automation of AWS WAF, Enhancing Cybersecurity for Businesses Amidst Ongoing Global Attacks

Cyber Security Cloud Inc. | June 01, 2021

Cyber Security Cloud Inc. (CSC), the world’s leading innovator in cyber threat intelligence and AI-driven web security, announced today that its WafCharm service fully manages AWS WAF operations and automatically optimizes rules for AWS WAF to assist in addressing web-related cyber attacks against business and critical government infrastructure, which are increasing globally. WafCharm is the only service on the market that builds, tests, and tunes AWS WAF rules automatically and continuously defends against zero-day threats.

While WafCharm protects against the OWASP 10 — the most critical web application security risks — it also automatically implements new rules in reaction to zero-day vulnerabilities found by CSC’s top threat intelligence team, Cyhorus.

CSC CEO Toshihiro Koike said, “As the need for web security grows globally, managing WAF with high accuracy has become a critical problem for many enterprises and web service providers.” WafCharm, our product, is an innovative solution that allows anybody to effortlessly and safely protect their web services. Companies should focus on innovation and value creation without having to worry about WAF rule management. We are happy to reach out to those who want to minimize expenses and effort while maintaining security accuracy to protect their environments better.”

About Cyber Security Cloud Inc.

The mission of the Cyber Security Cloud is to provide safe cyberspace for people all around the world to use. CSC provides web application security services in over 70 countries, using the most effective cyber threat intelligence and AI-driven security technology available. As one of the world’s few Amazon Web Services (AWS) WAF Managed Rules Sellers certified by AWS — the cloud giant that controls almost half of the global cloud market — CSC optimizes and automates rules best suited to each customer’s AWS deployments as new cyber threats arise. CSC also offers a scalable WAF solution for Microsoft Azure and other clouds. CSC, a global leader in cybersecurity, continues to develop and refine award-winning technologies and security solutions that contribute to the information revolution.

Spotlight

Die jahrzehntelange Praxis, Remote-User, Zweigstellen und andere externe Standorte mit Hub-and-Spoke-Architekturen ans Unternehmensnetzwerk anzubinden, ist heute nicht mehr zeitgemäß. In einem Geschäftsumfeld, das von dem anhaltenden Trend zur Remote-Arbeit und der zunehmenden Verlagerung von Anwendungen in die Cloud geprägt ist

Spotlight

Die jahrzehntelange Praxis, Remote-User, Zweigstellen und andere externe Standorte mit Hub-and-Spoke-Architekturen ans Unternehmensnetzwerk anzubinden, ist heute nicht mehr zeitgemäß. In einem Geschäftsumfeld, das von dem anhaltenden Trend zur Remote-Arbeit und der zunehmenden Verlagerung von Anwendungen in die Cloud geprägt ist

Related News

PLATFORM SECURITY,SOFTWARE SECURITY

Vijilan Announce Joining Hands with CrowdStrike Powered Service Provider Program

Vijilan Security | January 17, 2023

Vijilan, a leading provider of cybersecurity services, announced that it had become a CrowdStrike Powered Service Provider (CPSP) partner. As a CPSP partner, Vijilan will offer managed observability services and managed endpoint detection and response (EDR) powered by the CrowdStrike Falcon platform to its partner communities of managed service providers and IT professionals. CrowdStrike has transformed security with the CrowdStrike Falcon platform, a unified security platform with a single, lightweight agent that safeguards and empowers the people, processes, and technologies that drive modern enterprise. CrowdStrike protects the most important areas of enterprise risk, such as cloud workloads and endpoints, identity and data, to keep customers ahead of the latest adversaries and stop breaches. As a CPSP partner, Vijilan will provide the following: Managed Endpoint Detection and Response: With leading EDR at its center, CrowdStrike correlates third-party and native cross-domain telemetry to provide unprecedented investigative efficiency, high-confidence detections, and quick, confident responses from one unified, threat-centric command console. Managed Observability: Designed with a unique index-free architecture and advanced compression technology that reduces the amount of hardware needed, CrowdStrike Falcon LogScale is a unified log management and observability solution. It allows organizations to analyze, store, and retain log data at scale, giving them insights that can be used for various security and non-security purposes. Kevin (KayVon) Nejad, Vijilan's CEO, said, "With CrowdStrike, we are delivering better-together security solutions to businesses of any size and a last line of defense when hackers have already passed through the organization's security appliances and tools." He also added, "Vijilan complements CrowdStrike's EDR capabilities through cross correlation of telemetry data from networks, devices, users, applications and data used by most MSPs and MSSPs." (Source – Cision PR Newswire) About Vijilan Security Founded in 2014, Vijilan is a U.S.-based LLC specialized in cybersecurity threat management. With more than 20 years of experience monitoring security, Vijilan has mastered the art of finding threats and incident response. Partners of Vijilan include Managed Security Service Providers (MSSPs) and Managed Service Providers (MSPs) that deliver managed IT services to industries like banking, education, healthcare, government and manufacturing. They rely on security solutions and security experts from Vijilan to deliver managed extended Detection and Response (mXDR) for its customers in the United States, the middle east, Asia-Pacific, and Europe.

Read More

ENTERPRISE SECURITY,SOFTWARE SECURITY,IDENTITY MANAGEMENT

SailPoint Announces Acquisition of SecZetta to Provide Robust Identity Security

SailPoint | January 13, 2023

On January 12, 2023, SailPoint Technologies, Inc., a leading identity security enterprise, announced the acquisition of SecZetta, a prominent third-party identity risk solutions provider. With around half of today's firms comprising non-employees, organizations need to factor this rising group of identities into their identity security strategies. By incorporating SecZetta, SailPoint will be able to expand its capabilities to assist businesses in gaining greater visibility into all types of identities, including both employee and non-employee identities, ranging from third-party contractors to temporary workers, and all this from a single, market-leading identity security platform. This acquisition will provide businesses with the centralized approach needed as well as the required identity verification to thoroughly validate non-employee identities across their organizations. SailPoint and SecZetta have a long-established partnership, and once SecZetta's solutions get fully integrated into SailPoint's Identity Security Cloud platform, SailPoint will deliver a unified platform to its customers, providing context-rich identity information with an appropriate level of intelligence answering the "who should have access to what," "why," and "when" questions for this unique, often under-secured set of identities. The addition of SecZetta will allow SailPoint to assist businesses with identity consolidation efforts, combining and arranging workforce data across authoritative sources into a consolidated identity repository. This identity intelligence will then be made available as a packaged offering within the identity security cloud platform in order to provide a more extensive identity security that provides the critical layer of risk management and governance required across employee and non-employee identities from a single platform. About SailPoint SailPoint is a leading identity security provider for modern enterprises. Through automating the administration and control of access by using the power of machine learning and AI, it delivers just the required to the right identities and technology resources at the appropriate time, matching the velocity, scale and environmental needs of today's cloud-oriented enterprise. SailPoint's sophisticated identification platform integrates seamlessly with existing systems and workflows, offering a unified view into all identities and their access. It strives to empower the most complex enterprises globally to build a secure foundation grounded in identity security.

Read More

ENTERPRISE SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

LogRhythm Improves Security Analytics with Expanded Security Operations Capabilities

LogRhythm | January 06, 2023

On January 05, 2023, LogRhythm, the company that empowers security teams to tackle an ever-changing threat landscape with confidence, introduced a variety of expanded capabilities and integrations for its security operations solutions. The enhancements improve LogRhythm's capacity to serve as a much-needed force multiplier for security teams that are required to defend against cyberattacks with confidence, effectiveness, and efficiency. This update follows the release of LogRhythm Axon, an innovative, cloud-native security operations platform launched in October. In addition, the organization is launching new visualizations and advanced analytics that provide seamless visibility into potential security threats. Axon and its latest updates are designed to simplify the experience of security analysts by making it easier for teams to identify, examine, and report on potential threats, easing the burden of managing risks and the operating infrastructure. In addition, these improvements span the entire suite of LogRhythm's offerings to collectively facilitate threat detection and resolution by SOC teams, improving analyst productivity and effectiveness. The key features of the updates include the following: LogRhythm Axon: New out-of-the-box and custom analytics rules that have rules for MITRE ATT&CK detections. Using the Observation Workflow, customers can quickly investigate log observations raised by analytics. Reduce time spent searching for data through new markdown and histogram widgets. LogRhythm UEBA: New detection models allow for the detection of elusive threats for Windows systems. LogRhythm NDR: Integration with Microsoft EDR improves blind spot detection and endpoint visibility. Enhanced analyst experience through expanded UI improvements. The new configuration page enables to import of data from VirusTotal smoothly. LogRhythm SIEM: The improved collection administrative workflow reduces the time required to configure, deploy, and manage log sources that involve Open Collector. Expanded and updated LogRhythm's library of supported log sources. Improved audit logging makes it easier to detect suspicious activity and track significant changes made by users. About LogRhythm LogRhythm, Inc. is an American security intelligence firm founded in 2003 that specializes in SIEM, log management, network and endpoint monitoring, forensics, and security analytics. With a comprehensive array of high-performance security, compliance, and operations solutions, LogRhythm is built to address a rapidly evolving world of cybersecurity threats. In addition, LogRhythm combines a versatile and comprehensive security operations platform, advisory services, and technology partnerships to help SOC teams defend sensitive data.

Read More