Security News

Google Reveals Combined SIEM and SOAR Update for Chronicle Security Operations Platform
2023-09-18 20:33

Google Reveals Combined SIEM and SOAR Update for Chronicle Security Operations Platform Users of the SecOps platform can preview Duet AI's natural language questions and summarization capabilities. Google Cloud announced today that an updated version of its Chronicle Security Operations platform is available in preview.

Enhancing Security Operations Using Wazuh: Open Source XDR and SIEM
2023-08-07 10:30

Wazuh is an open source unified XDR and SIEM platform that helps organizations monitor, detect, and respond to security threats and compliance issues across their IT infrastructure. Wazuh extends its capabilities by integrating with several security platforms.

LogRhythm vs Splunk (2023): SIEM tool comparison
2023-08-03 13:40

This is a comprehensive LogRhythm vs Splunk SIEM tool comparison. LogRhythm and Splunk are two prominent players in the SIEM market, and many organizations deploy them to monitor and manage security events, detect threats and ensure a robust security posture.

Adopting Splunk’s Analytics-Driven Security Platform as Your SIEM
2023-04-26 12:00

TechRepublic Premium Mobile device security policy PURPOSE This Mobile Device Security Policy from TechRepublic Premium provides guidelines for mobile device security needs in order to protect businesses and their employees. This policy can be customized as needed to fit the needs of your organization.

Securing cloud workloads with Wazuh - an open source, SIEM and XDR platform
2023-03-06 15:05

Cloud workload security is a practice that ensures all cloud workloads are adequately monitored and protected. Cloud security solutions assist in protecting against threats targeting cloud infrastructure thereby lowering risk, improving application reliability, and ensuring regulatory compliance.

Auditing Kubernetes with Open Source SIEM and XDR
2023-02-01 10:26

The Wazuh open source platform plays a critical role in monitoring Kubernetes and other components of an organization's infrastructure. Kubernetes is an open source container management solution that automates the deployment and scaling of containers and also manages the life cycle of containers.

Using the Wazuh SIEM and XDR platform to meet PCI DSS compliance
2023-01-31 15:05

An example of a solution that helps meet PCI DSS compliance requirements is Wazuh. Wazuh helps implement PCI DSS compliance by performing log analysis, file integrity checking, configuration assessment, intrusion detection, real-time alerting, and automated response to threats.

How to use Microsoft KQL for SIEM insight
2023-01-27 18:05

KQL is an interesting hybrid of scripting and query tools, so it's familiar to anyone who's used Python for data science or SQL for working with databases. It's designed to work against tables of data, with the ability to create variables and constants that can help control the flow of a set of KQL statements.

Ransomware detection with Wazuh SIEM and XDR platform
2022-11-29 15:05

Ransomware as a Service is a business model that helps ransomware developers and operators sell or lease out ransomware capabilities to threat actors. Common behaviors of ransomware Based on the attack pattern, ransomware can encrypt critical data without interfering with other computer system functions.

IBM QRadar vs. LogRhythm: SIEM tool comparison
2022-03-25 03:08

IBM Security QRadar and LogRhythm provide security to organizational networks through their SIEM solutions. The IBM Security QRadar SIEM works to detect cyberthreats and suspicious activity across the network enterprise within on-premises, hybrid and cloud environments.