Analyze Attacker Behavior, Endpoint Detection Anomalies with LogRhythm and Carbon Black
As cyberthreats continue to grow, enterprises like yours are challenged more than ever to protect the business from damage. And threats aren’t going away. By 2021, Cybercrime Magazine predicts a ransomware attack will occur on businesses every 11 seconds, up from…
Read More
January 21, 2021
Windows Certificate Export: Detections Inspired by the SolarWinds Compromise
Posted by: LogRhythm Labs
TL/DR Methods to detect when a certificate is exported from a Windows system are discussed in detail below using the audit log “Certificate Services Lifecycle Notifications” and collecting the log messages with “MS Windows Event Logging XML – Generic” log…
Read More
January 21, 2021
Code42 and LogRhythm Partner to Protect Against Insider Threats
As remote work has become the norm for many enterprises, organizations are struggling with the troubling reality of rising insider threats. Whether the results are from careless or negligent employees or malicious insiders, it’s crucial to arm your organization with…
Read More
January 15, 2021
Telecommunication Security Use Cases
Posted by: Leonardo Hutabarat
Attacks made against telcos and internet service providers (ISPs) have steadily risen. Distributed denial of service (DDoS) attackers launched an 11-day attack against a Chinese telco in 2017 — breaking the DDoS record that year. That same year, Kaspersky Lab…
Read More
January 6, 2021
What is ICS Security? How to Defend Against Attacks
Posted by: Marcos Schejtman
Industrial control systems (ICS) play a fundamental role in monitoring complex industrial processes and infrastructure. Proper ICS security is critical, as these systems often face malicious threats and cyberattacks. The National Institute of Standards and Technology (NIST) explains the importance…
Read More
December 30, 2020
LogRhythm is Named a Leader in G2’s Winter Grid® Report for Security Information and Event Management (SIEM)
LogRhythm users have rated the LogRhythm NextGen SIEM Platform a Leader in the G2 Grid® Report for Security Information and Event Management (SIEM) Software. G2 is a go-to for buyers looking for user reviews to help them evaluate software and…
Read More
December 30, 2020