NDR Tag

In my recent eBook, The SOC Visibility Triad: Three Core Pillars for Network-Centric Threat Detection and Response, I discussed how Network Detection and Response (NDR) together with SIEM and Endpoint Detection and Response (EDR) improves threat detection and response. Gartner refers to this as a...

We have already shared three of the top five things customers tell us that they hate about their standalone IDPS: it floods the SOC with alerts, lacks visibility into lateral movement of threats inside the network and does not detect enough. Now, I’ll discuss the...

In 2018, cryptomining malware infected organizations roughly 10 times more than ransomware.  However, since then, ransomware has climbed back to the top of the cybercrime landscape. Europol witnessed this resurgence, prompting the law enforcement agency to name ransomware as the top threat in 2019. Although...

We’re inclined to focus only on digital threats that emanate from outside the network. In so doing, however, we overlook a key risk: threats that come from within the network itself. I’ll use this blog post to discuss what these “insider threats” look like, what types...