Cybersecurity Roundup: MSP Attacks, NCSAM, Exabeam, Comcast Business
… cross-cluster searches to improve responsiveness for global deployments.
Mitre Attack is s a globally accessible knowledge base of adversary tactics and techniques based on real-world observations of cyberattacks. They are arranged by attack stages, from initial system access to data theft or machine control. SMP detection methods now are mapped to the Mitre Attack framework, allowing security analysts to label adversary behavior and enabling improved collaboration.
The new mapping approach enables security analysts to view and filter Mitre techniques within Exabeam Smart Timelines, machine-created timelines that sequence events into plainly worded narratives. Smart Timelines allow security teams to investigate event details with minimal technical expertise and without querying multiple systems. Analysts can mouse over event labels for Mitre techniques for a pop-up description or click on labels to open the Mitre webpage for a detailed description.
In addition, security analysts can search for Mitre tactics and techniques using Exabeam Threat Hunter across users and devices, using drop-down menus and a point-and-click interface.
Trevor Daughney, Exabeam’s vice president of product marketing, tells us partners now can offer SMP customers new enhancements that improve the security operations center (SOC) experience.
“These updates provide a substantial competitive advantage to Exabeam and our partners,” he said. “The true and tangible difference between Exabeam and other companies is that our tools provide a lot of flexibility and features that security teams need. As an example, one of those tools is the new checklists feature. At its most basic, it is the ability to document a series of tasks. However, it can expand out, providing a way to combat the skills gap concerns currently top of mind for many SOC department leaders. Through this feature, senior analysts can create the checklist, then more junior folks can address more specific incidents. This allows for not only on-the-job training opportunities, but also, and more importantly, it adds a layer of protection by ensuring each analyst is using the same set of processes.”
Comcast Business Unleashes Small Business Protection
Comcast Business has launched its new cloud-based internet security solution, specifically aimed at helping small businesses manage the growing risk of cyberattacks.
Comcast Business SecurityEdge works to protect a business’ network and the devices connected to it against several existing and emerging internet-related threats, including malware, ransomware, phishing and botnet infections, without requiring additional hardware or software beyond the Comcast Business Internet modem.
“Cybersecurity keeps business owners up at night because they face an onslaught of challenges from various, ever-changing forms of cyberthreats that can result in the loss of sensitive information or the disruption of business operations,” said Shena Tharnish, Comcast Business’ vice president of cybersecurity products. “Comcast Business SecurityEdge – a simple yet powerful solution – can help defend companies and their data from serious harm by protecting all devices connected to the network at an affordable price.”
Comcast Business’ internet security solution, developed in partnership with Akamai, blocks access to compromised or malicious domains, which helps prevent business owners, employees or guests from accessing an infected internet site. Businesses also have the ability to filter web content – gaining more visibility into their network safety with a personalized dashboard that provides regular reporting.
The cloud-based solution updates internet domain threats every 10 minutes so companies can be protected from the latest threats with no need for manual downloads or software updates, according to Comcast Business.