Security News

Panther Labs Launches Open-Source Cloud-Native SIEM
2020-04-01 11:34

San Francisco-based cloud security startup Panther Labs has launched the first stable version of its open-source security information and event management solution, Panther. Advertised as "a powerful alternative to traditional SIEMs like Splunk," Panther is self-hosted and it uses Python to analyze logs from popular security tools, and also includes support for analyzing cloud resources with policies to help discover vulnerable infrastructure and establish security best practices.

Sumo Logic Cloud SIEM Enterprise: Helping SOC personnel to better manage real security events
2020-02-25 02:30

Sumo Logic, the leader in continuous intelligence, announced the availability of its new Cloud SIEM Enterprise offering, which includes a rich set of capabilities to ease the burden on security operations center personnel. The new capabilities help identify and prioritize high fidelity threats and automate the analyst workflow, allowing SOC personnel to better manage real security events and effectively enforce security and compliance policies.

Hardcoded SSH Key Found in Fortinet SIEM Appliances
2020-01-20 19:37

A hardcoded SSH public key in Fortinet's Security Information and Event Management FortiSIEM can be abused to access the FortiSIEM Supervisor. The hardcoded SSH key is for the user 'tunneluser', is the same between installs and is also stored unencrypted in the FortiSIEM image.

SIEMs like a stretch: Elastic searches for cash from IT pros with security budgets
2019-12-10 11:04

Open-source product now has yet another paid option on top Black Hat Europe Elastic, the biz behind open-source search engine stack Elasticsearch, has launched its own SIEM – a somewhat...

What Is Next Generation SIEM? 8 Things to Look For
2019-11-14 13:59

Effective next generation SIEM should provide better protection and equally important, if not more, a much more effective, next gen user experience.

SIEM complexity and cloud visibility put companies at risk
2019-11-08 06:15

Nearly half of companies are unable to remediate insider threats until after data loss has occurred, a Gurucul survey reveals. The study found that lack of visibility into anomalous activity,...

Whitepaper: SIEM + Threat Intelligence
2019-11-04 04:30

SIEMs are a powerful tool for collecting and correlating event data and have a well-deserved place within your security infrastructure for centralized log management. But to truly shine they need...

Five Main Differences between SIEM and UEBA
2019-10-23 10:14

Five ways in which SIEM and UEBA technology differs.

Elastic blends SIEM and endpoint security into a single solution for real-time threat response
2019-10-17 02:00

Elastic, the company behind Elasticsearch and the Elastic Stack, announced the introduction of Elastic Endpoint Security, based on Elastic’s acquisition of Endgame, a pioneer and...

LogRhythm launches True Unlimited Data Plan for SIEM
2019-10-03 02:45

LogRhythm, the company powering the world’s enterprise security operations centers (SOCs), announced that it launched the first True Unlimited Data Plan for its NextGen SIEM. Historically,...