Skip to main content

SECURITY

Webinar Recap: 2017 Cybersecurity Trends & Predictions

Today’s enterprises are under a continuous stream of cyberattacks and security operations centers need to equip themselves with what’s to come. Exabeam Chief Security Strategist, Stephen Moore and Exabeam Director of Threat Research, Barry Shteiman expanded on the current state of play and the future of cybersecurity in a recent webinar. Current State of the SOC Organizations fall into one of two categories: they have a SOC, or they don’t. Unfortunately, the many organizations that[…]

Read more

Topics: SECURITY, SIEM

The Future of Cybersecurity & Industry Predictions

Exabeam’s Chief Security Strategist, Stephen Moore, was invited to share his predictions for the future of cybersecurity with VMBlog for 2018 as part of their 10th annual industry executive exclusive. In his post, he shares his perspective on the changing face of cybersecurity. Robust cybersecurity policies are an absolute necessity given the changing landscape of cybersecurity. People regularly ask questions like, “Do organizations even need a CISO anymore?”, “Should cybersecurity sit independent of IT?”, and[…]

Read more

Topics: SECURITY

Exabeam Wins Red Herring Global 100 and Computing Security Excellence Awards

We’re thrilled to announce that Exabeam recently won two prestigious awards. These awards were: The Red Herring 2017 Global Top 100 The Computing Security Excellence Award for Security and Event Management Exabeam Named Red Herring 2017 Global Top 100 Winner Since the mid 90s, Red Herring has selected the top privately owned startups from specific geographic regions and highlighted them in their top 100 showcase.  To be considered for the list, companies must be: Technology[…]

Read more

Topics: awards and recognition, SECURITY, SIEM

Exabeam Highlighted in the Expanding Cisco Security Technology Ecosystem

Earlier this week, Cisco Security released a blog announcing more than 26 new integrations with 3rd party security products.  Here at Exabeam, we’re thrilled to have been prominently mentioned several times throughout the announcement for the value our integrations deliver to joint Cisco / Exabeam customers. This exemplifies the commitment we’ve made to working with Cisco Security as a strategic partner. Exabeam was specifically mentioned for several integrations including: Cisco Firepower Cisco Umbrella The joint[…]

Read more

Topics: benefits, Partnerships, SECURITY

UBA, UEBA, & SIEM: Security Management Terms Defined

This blog post seeks to define and explain some common acronyms involved in today’s security management landscape. What is UBA?   UBA stands for User Behavior Analytics and it’s an analytics led threat detection technology. UBA uses machine learning and data science to gain an understanding of how users (humans) within an environment typically behave, then to find risky, anomalous activity that deviates from their normal behavior and may be indicative of a threat. How[…]

Read more

Topics: SECURITY, Uncategorized

Why is Critical Infrastructure So Vulnerable to Insider Threats?

Why is Critical Infrastructure so Vulnerable to Insider Threats?

A recent article in the Washington Post “Russia has developed a cyberweapon that can disrupt power grids, according to new research” came as a real reminder of the constant risk critical infrastructure operators face. The malware, which researchers have dubbed CrashOverride, is known to have disrupted only one energy system in Ukraine but could be deployed against U.S. electric transmission and distribution systems. The consequences of insider threats to critical infrastructure operators are much greater[…]

Read more

Topics: SECURITY

Too Many Alerts… Just Give Me the Interesting Ones!

Security analysts often wrestle with the high volume of alerts generated from security systems and much like the protagonist in The Boy Who Cried Wolf, many alerts tend to be ignored. Human analysts quickly learn to ignore repeated alerts in order to focus on the interesting ones.  Learning to screen out repeated alerts as false positives allows analysts to focus their finite time where it matters most. A natural question, then, is whether we can[…]

Read more

Topics: data science, SECURITY

Ransomworm: Don’t Cry – Act.

WannaCry

In July last year, we released our research report on the Anatomy of a Ransomware attack in which we looked into both the financial model of ransomware and then detection as it unfolds. Due to the recent WannaCry ransomware craze, we think it’s time to revisit. When we addressed ransomware last year, we made a significant comment about the ever-evolving nature of malicious software. We predicted that in the near future (evidently now) ransomware will move[…]

Read more

Topics: data science, ransomware, SECURITY, SIEM, Uncategorized

A Machine Learning Study on Phishing URL Detection

Many network attack vectors start with a link to a phishing URL. A carefully crafted email containing the malicious link is sent to an unsuspecting employee. Once he or she clicks on or responds to the phishing URL, the cycle of information loss and damage begins. It would then seem highly desirable to nip the problem early by identifying and alerting on these malicious links. In this blog, I’ll share some research notes here on[…]

Read more

Topics: data science, SECURITY

Flipping the SIEM Value Equation

If you operate a SIEM, you probably deeply sympathize with what I’m about to say. SIEMs are over priced. More accurately, SIEMs are overpriced compared to the value they actually provide to their customers. Not only are these systems responsible for draining security budgets, they aren’t effective in helping customers to effectively manage security incidents. The Economics of SIEMs (and Razors) All legacy SIEMs have at least one thing in common, some form of data[…]

Read more

Topics: SECURITY, SIEM, TIPS AND TRICKS
2017