Stop Hidden Cyber Threats with IronDefense

Stop Hidden Cyber Threats with IronDefense

By Greg Tavarez

Organizations are on the move to the cloud as part of their digital transformation. But they might be unaware of unknown threats that slipped past endpoint and firewall detection. A network detection and response solution is needed to embolden analysts on any team to gain visibility across the entire threat landscape.

IronNet’s IronDefense solution enables advanced and early visibility of unknown cyber threats that might have snuck past endpoint and firewall detection and entered the network, whether on-premises or in the cloud. And IronNet is in the process of adding enhanced capabilities to the solution.

IronNet’s latest NDR updates allow security operations center analysts to use IronDefense to detect VPN abuse such as high failed logins, password spray and suspicious login times. Additional analytics updates enable detection of ongoing patterns of fixed-interval and randomized-timing beacon activity as well as the detection of DNS tunnels using advanced encoding techniques being leveraged by attackers.

Additionally, new sensors are auto-commissioned and auto-upgraded without requiring interaction from the SOC staff.

And, from a more ecosystem perspective, IronDefense enables customers using SentinelOne EDR to create and update network inventory as well as isolate a device in a SentinelOne-deployed network remotely from the entity page in the IronDefense UI. Similar capability exists for CarbonBlack and Crowdstrike endpoints.

"We strive always to integrate best-in-class behavioral analytics to stay ahead of ever-changing tactics, techniques and procedures used by nation-state adversaries and cyber-criminal organizations,” said Raj Sivasankar, IronNet vice president of product management. “Our goal is to deliver enhanced, broad and early visibility of threats on enterprise networks–well before business impact.”

The update to the IronDefense solution is proof that IronNet continues to empower security teams to do more with fewer resources. This is of vital importance as organizations seem to struggle to find the level of security talent needed to secure the network against advanced and less sophisticated cyberattacks.

IronNet’s advanced threat detection technology and proactive threat intelligence allow the IronNet Collective Defense platform, powered by AWS, to serve as an early warning system for organizations participating in IronNet’s shared defense approach to cybersecurity.

Edited by Erik Linask
Get stories like this delivered straight to your inbox. [Free eNews Subscription]

MSPToday Editor

Related Articles

Say Goodbye to Passwords: 1Password Unveils Two Passkey Innovations

By: Greg Tavarez    6/9/2023

1Password now offers customers the ability to save and sign into online accounts with passkeys as well as unlocking 1Password accounts with a passkey.

Read More

Industrial Cybersecurity Transformed: Secureworks Launches Integrated MDR Solution for OT and IT

By: Greg Tavarez    6/8/2023

Secureworks announced two new offerings to unify the way industrial organizations prevent, detect and respond to threats across the OT and IT landscap…

Read More

K8 Notifier: A New Twist on Cloud Cybersecurity

By: Matthew Vulpis    6/8/2023

K8 Notifer can create a suite of alerts for MSP to detect suspicious activity in the configuration and patterns of their and their customers cloud ser…

Read More

Impossible Cloud Paves Way with New Program in the Web3 Era

By: Greg Tavarez    6/8/2023

Impossible Cloud's Partner Program allows partners and resellers to seamlessly implement, demo and integrate its efficient, performance-driven solutio…

Read More

CrowdStrike Empowers Next-Gen Cybersecurity with Generative AI

By: Stefania Viscusi    6/8/2023

Security company CrowdStrike unveiled Charlotte AI, a new generative AI cybersecurity that will help to democratize security and empower users of the …

Read More