Reactions to Trump’s Executive Order on Cybersecurity
Recently, President Trump signed an Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure. The order, originally designated to be signed shortly after his inauguration in January, was signed on May 11, 2017. I had the opportunity…
Read More
June 13, 2017
SANS Institute Validates LogRhythm’s Ability to Scale Above 300K MPS
The Importance of Security Analytics for Threat Prevention Many organizations are beginning to realize that they must use security analytics to recognize threats that bypass their preventative technologies. Unfortunately, despite the promise of a silver bullet, security analytics alone is…
Read More
June 7, 2017
Ready to Rule Your Network?
I am often amazed at how much fun I get to have as a Technical Product Manager for LogRhythm NetMon. Today, for example, I get to announce a new contest where you can use your NetMon instance to win some…
Read More
June 1, 2017
Enabling 24×7 Monitoring and Response Using Automated Playbooks
Continuously detecting and responding to malware threats can be an operational challenge. It can also be riddled with inefficiencies and risk. The reality is many organizations do not have the staffing resources to operate a 24×7 security operations center (SOC).…
Read More
May 25, 2017
Detect WannaCry Initial Exploit Traffic with NetMon
The WannaCry ransomware campaign is just the latest wave of malware to target exploits in core networking protocols. And you need to protect your network with advanced threat detection. The ransomware spreads to unpatched Windows systems (see Microsoft Security Bulletin…
Read More
May 17, 2017
Detecting WannaCry Activity on Sysmon-Enabled Hosts
If you are already using Microsoft Sysmon in your environment, then you might be wondering whether it is possible to detect WannaCry activity on your Sysmon-enabled Windows hosts. The answer is yes, and this blog will explain how! What is…
Read More
May 17, 2017