Honeypot Security Analytics Suite – Bolsters Threat Intelligence, Real-Time Attack Detection and Adaptive Threat Defense
BOULDER, Colo.—August 6, 2014— LogRhythm, The Security Intelligence Company, today released a new analytics suite that monitors honeypots to track would-be attackers, enabling customers to analyze nefarious tactics and generate targeted threat intelligence that facilitates an ongoing adaptive defense posture. The new Honeypot Security Analytics Suite is the latest in a series of innovations from LogRhythm Labs designed to expedite the detection, prioritization and response to advanced cyber threats.
Honeypots are isolated decoy systems and services designed to look like production servers, but enabled to be susceptible to IT attackers. With LogRhythm’s new Honeypot Security Analytics Suite, customers are able to easily deploy honeypots to attract opportunistic hackers. The suite then captures network and log activity related to the honeypots, helping organizations detect various evolving attacks – including advanced zero-day malware, brute force attacks and emerging nefarious payloads.
The LogRhythm Security Intelligence Platform prioritizes intel derived from the honeypots to orchestrate responses from similar attacks on production networks. For example, LogRhythm SmartResponse™ plugins automatically apply observations from the suite to managed blacklists and identified malware, so the IP address of an attacker targeting the honeypot will be blocked and the programs executed can be identified if discovered on production systems.
“LogRhythm continues to innovate, and our Honeypot Security Analytics Suite is the latest example of a set of features and functionality that advances our customers’ ability to detect and respond to cyber threats faster,” said David Pack, Director of LogRhythm Labs. “It’s now extremely straight forward for a LogRhythm customer to set up a honeypot that looks and acts like the customer’s network. The LogRhythm Security Intelligence Platform analyzes what the attackers are doing, and that intel is immediately harvested to best protect the entire company.”
The Honeypot Security Analytics Suite is available to customers immediately as part of LogRhythm’s award-winning Security Intelligence Platform, and it is the latest security analytics suite developed by LogRhythm Labs. LogRhythm also recently launched the Retail Cyber Crime Security Analytics Suite to help identify early indicators of cyber attacks on the payment processing chains of retail organizations.
LogRhythm is a world leader in NextGen SIEM, empowering organizations on six continents to successfully reduce risk by rapidly detecting, responding to and neutralizing damaging cyberthreats. The LogRhythm platform combines user and entity behavior analytics (UEBA), network traffic and behavior analytics (NTBA) and security automation & orchestration (SAO) in a single end-to-end solution. LogRhythm’s Threat Lifecycle Management (TLM) framework serves as the foundation for the AI-enabled security operations center (SOC), helping customers measurably secure their cloud, physical and virtual infrastructures for both IT and OT environments. Built for security professionals by security professionals, the LogRhythm platform has won many accolades, including being positioned as a Leader in Gartner’s SIEM Magic Quadrant.