Stop Hidden Cyber Threats with IronDefense

Stop Hidden Cyber Threats with IronDefense

By Greg Tavarez

Organizations are on the move to the cloud as part of their digital transformation. But they might be unaware of unknown threats that slipped past endpoint and firewall detection. A network detection and response solution is needed to embolden analysts on any team to gain visibility across the entire threat landscape.

IronNet’s IronDefense solution enables advanced and early visibility of unknown cyber threats that might have snuck past endpoint and firewall detection and entered the network, whether on-premises or in the cloud. And IronNet is in the process of adding enhanced capabilities to the solution.

IronNet’s latest NDR updates allow security operations center analysts to use IronDefense to detect VPN abuse such as high failed logins, password spray and suspicious login times. Additional analytics updates enable detection of ongoing patterns of fixed-interval and randomized-timing beacon activity as well as the detection of DNS tunnels using advanced encoding techniques being leveraged by attackers.

Additionally, new sensors are auto-commissioned and auto-upgraded without requiring interaction from the SOC staff.

And, from a more ecosystem perspective, IronDefense enables customers using SentinelOne EDR to create and update network inventory as well as isolate a device in a SentinelOne-deployed network remotely from the entity page in the IronDefense UI. Similar capability exists for CarbonBlack and Crowdstrike endpoints.

"We strive always to integrate best-in-class behavioral analytics to stay ahead of ever-changing tactics, techniques and procedures used by nation-state adversaries and cyber-criminal organizations,” said Raj Sivasankar, IronNet vice president of product management. “Our goal is to deliver enhanced, broad and early visibility of threats on enterprise networks–well before business impact.”

The update to the IronDefense solution is proof that IronNet continues to empower security teams to do more with fewer resources. This is of vital importance as organizations seem to struggle to find the level of security talent needed to secure the network against advanced and less sophisticated cyberattacks.

IronNet’s advanced threat detection technology and proactive threat intelligence allow the IronNet Collective Defense platform, powered by AWS, to serve as an early warning system for organizations participating in IronNet’s shared defense approach to cybersecurity.




Edited by Erik Linask
Get stories like this delivered straight to your inbox. [Free eNews Subscription]

MSPToday Editor

SHARE THIS ARTICLE
Related Articles

ICYMI: News Around the MSP Industry

By: Greg Tavarez    5/17/2024

Here are a few articles compiled into one for readers interested in developments around the MSP space.

Read More

Wildix UK and Ireland Shake Up Leadership for Growth and Innovation

By: Greg Tavarez    5/16/2024

Wildix announced a strategic leadership transition designed to propel the company's market growth.

Read More

Are Resellers Leaving Money on the Table?

By: Special Guest    5/16/2024

The expert and correct installation of network infrastructure and other components is crucial to every IT project's success, adding tangible value by …

Read More

Bitwarden's New Standalone App Makes Two-Factor Authentication Simple

By: Greg Tavarez    5/15/2024

Bitwarden recently launched a standalone app for two-factor authentication to protect online services and applications from unauthorized access.

Read More

Cyware Quarterback: The AI Playmaker for Advanced Security Operations

By: Greg Tavarez    5/15/2024

Cyware Quarterback is a user-friendly, AI-powered interface that streamlines security tasks for enterprise clients and security information sharing gr…

Read More