The CIP Merry-Go-Round: Say So Long to Version 4, Hello to Version 5?
CIP version 5 is the latest go-round of cybersecurity rules for the bulk electric system since Congress beefed up the former voluntary reliability regime in 2005 and turned an industry-sponsored group into a formal, regulatory cadre with muscles.
Cyber warrior PhD funding announced for Oxford and London
Modern cyber criminals are experts in their own right, so it makes sense to build an army of graduates with the relevant, highly specialist skills needed to combat them.
Employers in denial about insider threat to data security
A study released earlier this year by Symantec and the Ponemon Institute of 3,500 workers worldwide revealed that half of them regularly emailed business documents to their personal accounts, a third confessed to moving work documents to unapproved file sharing apps and 40 percent stashed work files on their mobile devices.
Charlotte, N.C. Automates Incident Logs
After considering several solutions, IT security staff went with Boulder, Colo.-based security information and event management provider LogRhythm. According to Agee, this was the right choice for Charlotte to get quick access to log information, and easily-digestible reports that were simple to analyze.
U.S. business SEC filings suggest cyber threats may be overstated
Critics of the SEC guidelines say the agency needs to pry more information about cyber attacks from companies.
LogRhythm Earns 5-Star Rating in Sc Magazine’s 2013 SIEM Group Test
LogRhythm appliance goes way beyond traditional security event monitoring and managetment . . .
U.S., China Trade Accusations, Talk of Cooperation In Cyberspace
The White House is calling for China to adopt acceptable norms of behavior in cyberspace, but Beijing denies involvement in attacks.
First Impressions Of The RSA Conference 2013
Vendors like Co3, Guidance Software, IBM, LogRhythm, RSA Security, and Splunk are responding to user demand with tools that simplify security forensics, analytics, and automation.
A Porous Perimeter Perplexes Security Pros
While it's a nasty pill to swallow for old-line security folks, the perimeter isn't what it used to be. The days when a company could hide behind its firewall and feel secure are gone.
Companies use cyberdefense to limit damage
In the past 18 months, U.S. companies and agencies have more readily acknowledged that breaches are occurring daily and have moved to update systems for detecting persistent intruders . . .
Evolving Eye on Network Security
Run-of-the-mill hacking has given way to organized criminal activity, and many government agencies and corporations have been victimized by stealthy attacks that have exploited vulnerabilities, disrupted operations, and stolen information.
Homeland Security Warns Cyber 9/11 Could Shut Down US
U.S. Secretary of Homeland Security Janet Napolitano said Friday she believes a "cyber 9/11" could happen "imminently." A coordinated terrorist cyberattack could effectively shut down the country, she says, and more needs to be done to prepare.
Mobile Attacks Top the List of 2013 Security Threats
For years, information security experts have predicted a spike in mobile malware. Will 2013 be the year of mobile attacks? And what other security threats are on the horizon?
SafeGuard Your SCADA: How to protect your critical infrastructure
America's critical infrastructure industries face cyber attacks on a daily basis which means that we cannot wait until there is a major power shutdown or disruption of water to act.
Attack cyber enemies before they attack us, says public
The majority of the public believe pre-emptive strikes are justified if enemy states or hi-tech criminals pose a threat to national security.
DOE Cyber-Security Audit Shows Incident Reporting, Management Hurdles
An audit of the Department of Energy's Cyber Security Incident Management Program outlined a number of challenges facing the agency.
LogRhythm Launches Automation Suite For PCI
"LogRhythm's Automation Suite for PCI is the latest installment of ongoing innovations in compliance automation and assurance embedded in LogRhythm's SIEM 2.0 platform."
How LogRhythm Is Making Sense, and Security, Out Of Log Data, with Andy Grolnick
"If you're a bank or large company, security is a never ending chore. And, it seems like there's always a new cyber-threat out there against your company."
Obama Administration in Talks to Draft Cyber-Security Executive Order
"We cannot afford to delay critical infrastructure companies' motivation to invest in better cyber-security capabilities. We need to see more investment in 2013 and companies need the motivation to budget appropriately."
Obama May Sign Cyber Security Executive Order
"Opponents expressed concern about whether the government should impose cyber security mandates on private-sector infrastructure operators and whether the military or Department of Homeland Security should take the lead in civilian cyber security."
U.S. Senate Thumbs Down Cybersecurity Act - What's Next?
"Without enforcement, some companies will just kick the can down the road and hope for the best."
SIEM 2.0 Big Data security analytics platform
"Further increasing the crippling volume of false positive events in first generation SIEMs is the inherent lack of data corroboration in these tools. Traditional uses of behavioral and correlative analysis are handled via separate technologies that don’t integrate."
Products of the week 10.22.12
"LogRhythm’s SIEM 2.0 platform employs the industry’s first multi-dimensional behavioral analytics, leveraging automated behavioral whitelisting and advanced statistical analysis..."
Multi-dimensional analytics tool for big data
"LogRhythm’s multidimensional approach integrates advanced correlative, statistical, behavioral and pattern recognition techniques to corroborate the identification of threats and breaches in real-time with unprecedented accuracy."
Security Analytics Tools Need to Understand Normal Behavior across IT
"With its new product release, LogRhythm figured out something that the security industry has long overlooked."
Big Data grows as data security shrinks
"Organisations must realise that the only way to ensure that cyber threats or other network issues can be effectively identified is to have a 360 degree visibility into every piece of data being generated by IT systems."
LogRhythm Goes Multi-Dimensional in Security Analysis
"The company says the multi-dimensional approach to SIEM is necessary due to the difficulties of establishing a baseline of normal user activity in an organization using a manual approach."
With Breaches Inevitable, 'Behavioral Whitelisting' Bolsters Fight
"... the new release offers the industry's first multi-dimensional behavioral analytics (MDBA) capability -- a method of detecting anomalies in the normal, or "baseline," activities of an enterprise, across all its entire digital environment."
With Breaches Inevitable, 'Behavioral Whitelisting' Bolsters Fight
"MDBA is an important and profound step, because it lets us go further into big data and ask questions across that data set..."
LogRhythm Adds New Layer to its SIEM 2.0 Big Data Security Analytics Platform
"... the enhanced SIEM 2.0 solution empowers organizations of all sizes to detect breaches and the most sophisticated cyber threats of today, faster and with greater accuracy than ever before."
LogRhythm Bolsters Its Big Data Security Analytics Platform
"The enhanced SIEM 2.0 solution empowers organizations of all sizes to baseline normal, day-to-day activity across multiple dimensions of the enterprise."
Industry Interview: LogRhythm
"As in physical war, in cyber-war there are no “perfect” defenses. As the sophistication of attacks continues to increase at a rapid pace, so too will the volume of breaches."
Obama Cybersecurity Executive Order Nears Completion As Legislative Saga Continues
"The cyber threat we face is unprecedented and we need an innovative and cooperative approach between the private sector and the federal government to protect the country from it . . ."
Banks on High Alert After Cyber Attacks
"For banks and most organizations, the unfortunate reality is that if targeted, they will most likely be breached," security researcher Chris Petersen. "The question then becomes how capable and quickly can the breach be detected, contained, and eventually eradicated." Bank of America and JP Morgan Chase have both suffered possible DDoS attacks.
From Catching A Clue To Catching The Attacker: SIEMs Evolve
"While many security professionals have wished for such capabilities, only recently has the technology caught up with the promise of catching attackers through real-time correlation of disparate networking events, says David Pack, manager of LogRhythm Labs . . ."
How to Let Employees BYOD Without the Risk
"Banning employees from bringing their own devices isn’t an option if you want to retain and keep employees, but implementing clear polices is. President Weighs Options After Cyber-Security Bill Fails in Senate Today, the utilities and critical infrastructure industries in the United States are under constant cyber-attack from nation states and other groups. … Bolstering their IT security hardware, policies and procedures should be mandated because the stakes are too high and the damaging blow it could land to the citizens of this country and our economy is far too great to overlook any longer."
President Weighs Options After Cyber-Security Bill Fails in Senate
"Today, the utilities and critical infrastructure industries in the United States are under constant cyber-attack from nation states and other groups. … Bolstering their IT security hardware, policies and procedures should be mandated because the stakes are too high and the damaging blow it could land to the citizens of this country and our economy is far too great to overlook any longer."
Defeat Of Cybersecurity Bill Ups The Ante For National Defense
''While at this point it is uncertain when new legislation can be introduced, it is becoming increasingly clear that the United States, as well as a number of other countries, remain highly vulnerable to attack by foreign nations, cyberterrorists, hacktivists and also your garden-variety of cyber criminal.''
Infrastructure wake up call
"The “hack” against an Illinois water utility in November brings to the forefront one of the biggest public and private sector concerns when it comes to critical infrastructure protection (CIP): cyber security."
Big Data and the London Olympics Cybersecurity Challenge
"The more recent games have had to focus as much on cybersecurity as they have on physical security. A threat to the Olympics no longer has to reside in the host city; they can wreak havoc across oceans."
DNSChanger Post-Mortem: What Did We Learn?
"The latest statistics show about 50,000 impacted systems in the United States and 250,000 worldwide. Italy, India, Germany, and Great Britain round out the rest of the top 5 countries with DNSChanger."
5 QUESTIONS with LogRhythm Inc. CEO Andy Grolnick
"The most sophisticated hackers and cyber criminals are able to get around a lot of traditional defenses. The key roles we play are being able to detect things that are not detected by the traditional defenses."
FTC Takes On Wyndham For Security Lapses
"The FTC accuses Wyndham of deceptive practices in the claims it made in its privacy, using three different breaches Wyndham suffered in the course of two years as evidence of failure to live up to promises to protect customer information."
FTC Sues Wyndham After Three Data Breaches
"According to the FTC's complaint, the repeated security failures exposed consumers' personal data to unauthorized access. Wyndham and its subsidiaries failed to take security measures, leading to three data breaches in less than two years. The FTC alleges Wyndham's data security policies were unfair and deceptive to consumers. . ."
FTC Lawsuit Alleges Wyndham Failed to Protect Customer Data All Three Times
"Organizations have to accept that if attackers want to get into their networks, they will. Instead, the priority needs to be on detecting a breach when it happens, and being prepared to respond rapidly to minimize damage . . ."
Securing Critical Infrastructure: A Cyber Security Call to Action
"The heat is on when it comes to protecting critical infrastructure in the United States. Unless the industry takes major steps to bolster its overall cyber security, 2012 could be the year hackers cause major disruptions that impact thousands of people."
Dating disaster: eHarmony confirms passwords exposed by LinkedIn hacker
"Ross Brewer, managing director at LogRhythm, points out that "this is the second significant data breach that eHarmony has suffered in less than two years. When taken alongside the latest LinkedIn hack and the spate of other high-profile incidents of late, it’s becoming painfully clear that falling victim to a security breach is now a case of when and not if."
How to determine if your LinkedIn password has been compromised
"As reports have swirled throughout the day that approximately 6.5 million LinkedIn passwords have been leaked . . ."
Obama administration sped up cyberattacks on Iran after Stuxnet disclosure
"The Obama administration accelerated cyberattacks against Iranian fuel processing facilities after public disclosure of the US-Israeli developed Stuxnet worm."
LinkedIn Breach Blamed on Rusty Securitky
"It appears LinkedIn didn't take password protection very seriously until quite recently, and that could be a costly lapse for an untold number of its users whose passwords have been pilfered."
How to determine if your LinkedIn password has been compromised
"As reports have swirled throughout the day that approximately 6.5 million LinkedIn passwords have been leaked . . ."
Google: Cyberspies Have Many Eyes, and Some Are Looking at Gmail
"Google has warned some Gmail users about what it suspects are state-sponsored cyberattacks directed at their accounts."
How to determine if your LinkedIn password has been compromised
"As reports have swirled throughout the day that approximately 6.5 million LinkedIn passwords have been leaked . . ."
6.5 Million LinkedIn Passwords May Be In Hands of Hackers
"LinkedIn on Wednesday morning was still unable to confirm reports that 6.5 million user passwords had been exposed. But Sophos has discovered LinkedIn password information posted on a Russian hacker site."
LinkedIn Breach Blamed on Rusty Security
"It appears LinkedIn didn't take password protection very seriously until quite recently, and that could be a costly lapse for an untold number of its users whose passwords have been pilfered."
6.5 Million LinkedIn Passwords May Be In Hands of Hackers
"Most Web applications have no legitimate need for SQL in the actual URLs. Alarming on this syntax along with encoded variations will detect both automated tool usage as well as manual Web application attacks"
And Today's Cyber Attack Award Goes to LinkedIn, as News Breaks that Users' Passwords are Now Compromised
"According to our research, it is extremely common for successful attackers to utilize automated SQL injection tools such as sqlmap or Havij. Such tools leave behind a log trail on the web server which at first glance makes the attack appear complex, but also makes it easy to detect."
At Least 6.5 Million LinkedIn Passwords Possibly Compromised
"Social networking powerhouse LinkedIn is investigating reports that approximately 6.5 million passwords have been stolen, and that their hashed representations have been posted on the Internet."
How to determine if your LinkedIn password has been compromised
"Experts warn using such online conversion tools, however. Dave Pack is a director at LogRhythm, a log management and IT security firm, who says some of the online conversion websites hold logs of hashes that have been calculated, so he warns about using such tools if your LinkedIn password is also used as a credential for other websites."
New focus on IT security and new legislation could help prevent major events with utility companies
"The increasing connectedness of infrastructure not only makes us more vulnerable to cyber security attacks but increases the cascading effect an attack can have on other infrastructure sectors and capabilities."
Pentagon sharing more cyber-security intelligence with industries
"The increasing connectedness of infrastructure not only makes U.S. utility companies more vulnerable to cyber-security attacks but increases the cascading effect an attack can have on other infrastructure sectors and capabilities."
IT security and new regulations needed to protect critical infrastructures
"The critical infrastructures public utilities provide make them a target of interest for a variety of threats. The catalysts behind these threats fall into the following primary categories: cyberwar, cyberterrorism, cybercrime, and hacktivism."
Compliance rather than best practice is driving security budgets
"So the real compliance issue is whether companies will be able to report a breach within the required 24 hour period. Here, 87% of the survey respondents believe they would not be able to identify the individuals within the required time."
UK organisations unprepared for EU data breach disclosure law
"Some 87% of UK businesses admit they would be unable to identify individuals affected by a data breach within the EU’s proposed 24 hour timeframe."
Businesses unlikely to comply with 24-hour breach notification
"Only one in ten UK businesses would be able to comply with the proposed European Commission ruling on reporting data losses within 24 hours."
Global Payments on Monday disclosed that hackers stole credit and debit card account information for fewer than 1.5 million consumers
"even high-profile and highly protected" financial services companies will remain targets. This breach is just the latest example that more needs to be done to detect suspicious activity on (company) networks and protect important data."
When is a cybercrime an act of cyberwar?
"There is growing talk of cyberwar, as opposed to run-of-the-mill cybercrime. There are also terms that lies somewhere in the middle called cyber espionage, and cyber hacktivism - which is sort of like cyber terrorism for good guys."
Boulder's LogRhythm expands, receives $85K incentive
"LogRhythm Inc., a Boulder-based cyber security firm that is expanding to larger quarters off Pearl East Circle, will receive up to $85,000 in rebates as part of Boulder's business incentive program, city officials announced Wednesday."
Infosec professionals unsure about abilities to stop cyber attacks
"Cyber threats are increasing in volume and sophistication….It’s becoming both increasingly necessary and urgent for organizations to deploy solutions like SIEM 2.0 . . ."
75 percent of information security professionals lack confidence in their ability to address cyber security threats: LogRhythm survey
"Cyber threats are increasing in volume and sophistication and our Cyber Threat Readiness Survey data confirms that most organizations recognize they lack the ability to detect and respond to these threats . . ."
When Is a Cybercrime an Act of Cyberwar?
"The problem is that there are subtle semantic differences in the way different parties apply the terms cybercrime, cyberwar, cyber espionage, cyber hacktivism, or cyber terrorism. There is no clear consensus, which complicates the process of determining what level of law enforcement or government should be engaged to address a given attack."
Nortel Breach Highlights Security Vulnerabilities of All Enterprises
"The decade-long security breach at Nortel that exposed thousands of company documents is just one example of how vulnerable corporations are to cyber-espionage."
How the Phoenix Suns basketball team takes on social media attacks
"Online interaction with fans started years ago with the team's website and email, and now there are five employees of the Phoenix Suns coordinating outreach on social media, whether it's tweeting team news, posting video interviews with coaches or team stars . . ."
The Intersection of Security Intelligence and Big Data Analytics
"The next-generation of security intelligence tools must provide big data analytics intelligence, multi-terabyte scale, and out-of-the-box value."
Multiple Hacks, DHS Warning on Critical Infrastructure Protection an Industry Wake-up Call
"The heat is on when it comes to protecting critical infrastructure in the United States. Unless the industry takes major steps to bolster its overall cybersecurity, 2012 could be the year hackers cause major disruptions that impact thousands of people."
Cyber War!
"Public utilities provide critical infrastructure, and that makes them a target for cyber war, terrorism, crime, and hacktivism."
Chamber Raid: Hackers Target US Commerce Lobby
"The fact that the Chamber ... had to be alerted by the FBI ... shows they did not have the appropriate endpoint monitoring capabilities and log management technology in place to see who was accessing their data and where it was going," Dave Pack, manager of LogRhythm Labs."
Hackers Stole Emails from Employees in Chamber of Commerce Breach
"Organizations need to have technology and policies in place to detect outbound network traffic, detect data leakage and use the right forensics to lock down problems, according to David Pack, Manager of LogRhythm Labs."
Boulder's LogRhythm tackles "Significant Adversaries"
"Boosting the company's research and development efforts with the recently raised capital, LogRhythm officials say they quickly worked to get ahead of the curve and help companies read and analyze log data for the "significant adversaries."
Product Review of Advanced Intelligence (AI) Engine™ from LogRhythm
"AI Engine is an optional component that integrates with any core LogRhythm product, allowing it to have full access to all gathered log data. Its advanced correlation rule sets, looks for patterns such as suspicious or unusual activity and provides alerting facilities, allowing administrators to respond swiftly to potential security threats. . ."
5 reasons why SIEM is more important than ever
"Almost every business is bound by some sort of regulation, such as PCI-DSS, HIPAA and Sarbanes-Oxley (SOX). Attaining and maintaining compliance with these regulations is a daunting task. SIEM technologies can address compliance requirements both directly and indirectly. ."
5 reasons why SIEM is more important than ever
"Advanced persistent threats: APTs have been in the news a lot, with many experts claiming they were responsible for the high-profile breaches at RSA, Lockheed Martin and others. ."
China refutes McAfee claims it was behind Shady RAT attacks
" . . .cybercriminals know what they want and are now more than capable of accessing it - even if this means breaking the systems of the world's most security conscious organisations. ."
Black Hat 2011: SIM rule maker on attacks and defenses
". . .David Pack, manager of LogRhythm Labs, explains how he and his team create rules for the vendor’s SIM appliance. While log management and SIM systems have been driven by compliance, Pack believes organizations can do a better job blocking and defending attacks using SIMs. ."
Black Hat shows hacker exploits getting more sophisticated
". . . Nation-state spies and cybergangs "are trying to get at sensitive intellectual property and government information every hour and every minute of the day," says Andy Grolnick, chief executive of tech systems-monitoring company LogRhythm."
How ALPS Advisors found its log management groove
". . . the LogRhythm platform has made it easy for the firm to investigate log activity to find bad login attempts, multiple user IDs from the same IP address, and symptoms that indicate someone is trying to get into the system. It allows the company to collect and report on daily log activity. "
Case study: LogRhythm Brings Time Savings
". . . since installing a new integrated log management & SIEM 2.0 solution (log and event management, file integrity monitoring, and network and user monitoring in a single offering) from LogRhythm, Commidea is experiencing new efficiencies by having an unprecedented view of data centre activity and superior log data analysis capabilities. "
The Share Centre opts for LogRhythm solution for compliance and network management capabilities
"The solution has been installed to ensure compliance with the PCI DSS regulations and for website, network management and security best practice. We have the LogRhythm console on display all of the time. . . "
Post Stuxnet – expect government hacking
"After the Stuxnet computer worm, which managed to hack into Iranian nuclear plant, operators of industrial equipment around the world need to be more wary of hacking . . ."
Finding Holes in IT Security
"LogRhythm collects audit, security, and operations logs from systems in the ePHI environment to create an official record of events. During the collection process, the tool identifies key events that signal a cause for action, such as breaches, system failures, or inappropriate usage."
LogRhythm Awarded Recommended from SC Magazine
"Right out of the box, this appliance not only collects, analyzes and correlates log data, but also encompasses advanced functions, such as file integrity monitoring, network and user monitoring, and full-scale compliance reporting."
LogRhythm attracts VC as client list grows
"LogRhythm now serves more than 500 clients that include government agencies, major defense contractors and international financial firms."
Riverside Medical Center uses LogRhythm for security and systems management
"LogRhythm was the only solution that provided in-depth pattern recognition and correlation across all logs on our network and integrated with our existing infrastructure, including our networked storage."
LogRhythm expands with new funding
"LogRhythm Inc., a Boulder-based company that makes software that monitors data generated from security networks, announced Wednesday it has closed on a $10 million Series C funding round."
Boulder's LogRhythm raises $10M
"The demand for the technology has dramatically increased because of information being disseminated on more vehicles, growing compliance requirements and the further sophistication of cybercriminals."
LogRhythm Logs $10 Million In VC Financing
"LogRhythm has developed comprehensive log management and analysis software that helps companies with compliance, security and optimization challenges."
LogRhythm French ministry targeted by cyber attack
"Traditional methods such as anti-virus solutions and firewalls are not infallible and they simply are not enough to ensure network security. Nation states therefore need to accept the inevitability of data breaches and take new courses of action to prevent similar incidents, which are both dangerous and embarrassing for the afflicted organisation."
LogRhythm Goes AI with Security Threat Detection Engine
"We designed the LogRhythm AI Engine to harness hybrid analysis techniques applied across all log data to deliver next generation pattern recognition capabilities, including complex correlation."
LogRhythm Improves Network Security with Complex Pattern Recognition
"Security Information and Event Manager (SIEM) vendor LogRhythm has added a new approach to understanding log data with a new Advanced Intelligence (AI) Engine. The goal of AI Engine is to find patterns in the logs that can help identify security events and hacks that otherwise would not be discovered."
LogRhythm SIEM Pattern Recognition Engine Uncovers Security Threats
"The AI Engine enables organizations, without writing any scripts, to detect sophisticated intrusions, fraud, insider threats, zero-day attacks, advanced persistent threats (APT) and other suspicious activity that would otherwise go unnoticed."
2011 Need To Know: Emerging Security Vendors
"This vendor has successfully tackled the most difficult parts of log analysis with automation. Its solutions offer log management, log analysis and event management so organizations can comply with regulations, secure their networks and optimize IT operation. "
PCI Compliance Requirements Put Burden on Satellite Sector
"The primary regulation of concern to application monitoring is the new regulation PCI PA-DSS 4.4, which states that payment applications must facilitate centralized logging."
LogRhythm Named to SC Magazine's 2010 Innovators Hall of Fame
"All it takes is a tool that can be distributed to gather in all that information and make sense of it.
LogRhythm can do that for you."
University of Nottingham Chooses LogRhythm
"In order to secure its networks to meet regulatory compliance and optimise its IT operations, the University of Nottingham (UoN) selected technology from LogRhythm and is now generating 26 million logs a day."
LogRhythm makes quick work of digging through system logs
"LogRhythm 5.1 is a quite extensive log management, analysis and event management solution for pretty much any size of network."
Focus on: Security | Specialty apparel retailer Express Deploys LogRhythm
"Within days, the new [LogRhythm] system was up and running on the company’s core servers, routers and firewalls, then quickly expanded across the network. Now the SIEM also monitors all POS and back-office systems in each of the company’s 580 stores."
Log Management and SIEM: The Network's Trusty Watchdogs
"Log management and security information event management provide deep and wide visibility into a data center's many moving parts and serve as both an early warning system and a forensic tool for finding and fixing root causes of network security problems."
Things To Look Out For In New PCI Version 2.0
"Perhaps the most significant shift is in application security. The wording for centralized logging of payment applications in the PA-DSS, for example, went from "should" do to "must" do, which will put more pressure on merchants to better secure their applications, notes Eric Knight, senior knowledge engineer at LogRhythm."
When Trust Is Not Enough: Examining Insider Threats
"Whether perpetrated by means of sleek corporate spying or dim-witted neglect, odds are that your insider threats will go undetected for an uncomfortable amount of time unless you play your hand correctly. Drew Amorosi investigates some of the common causes of internal data leaks and reveals its many faces"
LogRhythm Balances Power, Simplicity
"LogRhythm has successfully tackled the truly difficult parts of log analysis; it automates a great deal of the drudgework involved in report processing and allows IT personnel to focus on problem resolution."
Dashboard View Improves Security
"[LogRhythm] helps CAP automate the collection, correlation and analysis of event data throughout the enterprise, completing tasks that previously took hours—or even days—in minutes or seconds."
Like Falling Off a Log
"[LogRhythm] wants to introduce more business intelligence-style function into log management systems that will make it easier for systems administrators to find answers to the kind of questions that compliance managers might ask."
LogRhythm Scores 9s Across the Board/Excellent Rating
"LogRhythm's appliance is long on features and flexibility. It combines a wealth of data views, easy pivot tables, viewing and filtering of real-time data, and the ability to enhance both discovery and analysis with strong Active Directory integration."
Log & Event Management: LogRhythm
"LogRhythm scores highly across the board and it is particularly strong for its front-end capabilities, with its combined coverage for real-time analysis, forensics and compliance monitoring being the best we have seen."
Log Management, The Next Generation
"Leading log management vendors like...LogRhythm...and others realize that log management isn't just about collecting and storing esoteric IT data, it is about providing organizations with the right data and tools to make this data actionable."
LogRhythm Mining Log Files for Better Security
" ...[LogRhythm gives] enterprises greater visibility into their log data, pulling in information from the host and network layers that aren't typically included in log management applications."
LogRhythm Adds Visualization, Location And Host Activity To Forensic Capabilities
" ..LogRhythm enables investigators to spot anomalous behavior compared to normal server activity, such as connecting to an unauthorized IP address, a normal process stopping for no apparent reason, etc."
LogRhythm expands platform abilities to add geolocation and boost network visibility
"Also added is geolocation data for both logs and security events to enable security teams to know where an activity originated, its destination and the impacted hosts, in order to detect potential attacks and data leaks."
LogRhythm Delivers Log-Powered Security Visualization Platform
"LogRhythm continues to be one of the pace setters...delivering innovations in host and network-level awareness, Geolocation mapping for logs and events and new visualization techniques that yield intelligence and insight from log data, not just random pieces of a puzzle."
St John Ambulance gears up for PCI DSS compliance
"LogRhythm stood out as being more flexible and configurable than the others," said Karl Heydenrych, IT director at St John Ambulance."
LogRhythm: Event Logs for All
"LogRhythm is an excellent product. Feature-wise, you can't go wrong with it. It's all there, and pulling data out, whether necessary for compliance with an external company or for delving into security logs, is fast."
The problem with SIEM 1
"... there are a number of [SIEM 1] products that do not even support SQL. Very few support the ability to import data mining models from the likes of SAS or IBM SPSS and only LogRhythm and Tier-3 support PMML (predictive modelling mark-up language)."
Bank of the West tilts from Cisco MARS to LogRhythm
"the lesson here about the Gartner MQ" is that "it should be utilized as a data point — and not a major requirement — for purchasing decisions."
Trends in Computer Forensics
"..identified 7 key trends in computer forensics:. "
LogRhythm: Quickly Deployed, Fully Compliant
"..LogRhythm takes complicated functions like security information and event management, brings them together and makes them easy."
Server Psychic? No, just SIEM savvy
"IT Best Practices Alert by Linda Musthaler, discusses how Ascent Media uses LogRhythm to comply with the Sarbanes-Oxley Act (SOX)."
Top Five Measures for Security Compliance
"At the heart of any regulation is a simple premise: ensure the confidentiality, integrity and availability of the organization’s information technology resources. There are four general concepts common to most regulatory mandates.."
SC Magazine Names LogRhythm SIEM Innovator of the Year
"LogRhythm has received every SC Magazine award in its product category this year including the Readers Trust Award for best SIEM, the Best Buy for digital forensics products, and now Innovator of the Year."
Security Vendors Take Aim at HITECH Act for Healthcare IT Overhaul
"Whatever changes Washington imposes upon the healthcare industry, existing laws like the HITECH Act, a recently strengthened HIPAA, and the Red Flag Rules have put into motion a massive overhaul of healthcare IT systems--and the healthcare industry is woefully unprepared to deal with it."
SIEM 2.0: Integrating Five Key Requirements Missing in 1st Gen Solutions
"In this Interactive Phone Conference, IANS faculty member Raffael Marty moderated a conversation with LogRhythm CTO/Founder Chris Petersen about the limitations of SIEM 1.0 solutions, the evolution to SIEM 2.0, what SIEM 2.0 will look like, and how LogRhythm fits in SIEM 2.0."
Virgin Money Giving selects LogRhythm for security
"LogRhythm is providing Virgin Money Giving’s IT security team with unprecedented visibility of, and control over, the IT network so that any irregularities can be addressed immediately - before they risk impacting the business or its customers. The choice followed a comprehensive assessment of Security Information and Event Management (SIEM) systems."
Vigil keeps watch on compliance opportunity
"GCSX CoCo compliance has been a major driver for Vigil vendors this year,” Alex Teh, commercial director at Vigil, said. “We are on target to do more than $2m (£1.25m) [worth of business] with LogRhythm this year and more than 70 per cent of this is down to GCSX CoCo compliance."
LogRhythm Launches New Line of Log, Event Management Appliances
"By automatically synchronizing with AD domains and sub-domains, LogRhythm provides visibility into actions by AD Users, Groups and Group Members."
LogRhythm Extends Standard for SIEM 2.0 with LRX Product Line
"To help provide early detection of insider threats and other suspicious user activity, LogRhythm has supplemented its User Activity Monitoring capabilities to include integration with Active Directory (AD)."
LogRhythm extends standard for SIEM 2.0 with LRX product line
"By combining new Log Deduplication technology, a 64 bit architecture, and deep Active Directory integration with new LRX appliances, LogRhythm raises the bar for SIEM 2.0 capabilities that it established in 2004 with the release of its initial integrated log and event management solution."
LogRhythm introduces SIEM 2.0 with LRX line of integrated log and event management appliances
"To help organisations crunch mountains of log data and detect key events in real-time, LogRhythm's new LRX line of appliances features log de-duplication technology and 64 bit performance."
Security Thought Leaders: Interview with Chris Petersen, CTO
"Chris Petersen is the CTO of LogRhythm, a log analysis company. He has done a lot of work in log management and has agreed to be interviewed by the securitylab, we certainly thank him for his time."
Q&A: Breaking the Log Barrier
"... used proactively, logs can provide far more information, including security alerts. In an age of increasing compliance regulation, it’s more important than ever to get your logs under control."
LogRhythm's Logging Solution Is a Slam Dunk For Phoenix Suns
“I sold [LogRhythm] to our CFO and upper management as being a tool that would act as another person assigned to the department [without] the overhead cost of salary and benefits."
Information Security 101: Who? What? Why? When?
"...if organisations are to retain control of their own IT systems, they must have complete visibility and knowledge, not only over who's doing what but also why, where and when it's happening. This is not rocket science, this is security 101."
Enterprise data explosion will only get bigger
"Managing the data mountain will be an ongoing issue..."
Bloor Research InDetail Report LogRhythm Version 4.1
"LogRhythm represents disruptive technology, since it has combined what were previously regarded as separate markets into a solution based on a single platform"
Butler Group Technology Audit - LogRhythm 4.1
"Butler Groups's opinion is that LogRhythm 4.1 is a well-rounded offering that provides IT with the tools to derive value from huge amounts of daily log data..."
Product Review - LogRhythm Version 4.1 Scores 5 stars
"The comprehensive log monitoring and reporting tools offered by LogRhythm will make it much easier for businesses to tighten security and prove regulatory compliance."
Intelligent Log Analysis May Beef up Security
"Security logs could help detect and prevent security breaches, but analyzing their reports is so boring that they're underutilized."
LogRhythm Upgrades Its Log and Event Management Solution
"LogRhythm introduced Intelligent IT Search, a new capability for its log and event management system designed to quickly uncover security threats and operational risks. "
LogRhythm - Information Security Magazine Product Review
"Verdict : LogRhythm is an outstanding and affordable log management tool, with many uses to fit any enterprise IT management tasks, and particularly useful in forensic analysis."
LogRhythm 4.0 Receives 5 Stars
"One of the best network log analysis tools we've seen. LogRhythm contains all the features you'd expect in a SIM plus the ones you need for managing log evidence"
Gartner
"LogRhythm recognized as Visionary in 2008 Security Information and Event Management "Magic Quadrant"."