Stop Hidden Cyber Threats with IronDefense

Stop Hidden Cyber Threats with IronDefense

By Greg Tavarez

Organizations are on the move to the cloud as part of their digital transformation. But they might be unaware of unknown threats that slipped past endpoint and firewall detection. A network detection and response solution is needed to embolden analysts on any team to gain visibility across the entire threat landscape.

IronNet’s IronDefense solution enables advanced and early visibility of unknown cyber threats that might have snuck past endpoint and firewall detection and entered the network, whether on-premises or in the cloud. And IronNet is in the process of adding enhanced capabilities to the solution.

IronNet’s latest NDR updates allow security operations center analysts to use IronDefense to detect VPN abuse such as high failed logins, password spray and suspicious login times. Additional analytics updates enable detection of ongoing patterns of fixed-interval and randomized-timing beacon activity as well as the detection of DNS tunnels using advanced encoding techniques being leveraged by attackers.

Additionally, new sensors are auto-commissioned and auto-upgraded without requiring interaction from the SOC staff.

And, from a more ecosystem perspective, IronDefense enables customers using SentinelOne EDR to create and update network inventory as well as isolate a device in a SentinelOne-deployed network remotely from the entity page in the IronDefense UI. Similar capability exists for CarbonBlack and Crowdstrike endpoints.

"We strive always to integrate best-in-class behavioral analytics to stay ahead of ever-changing tactics, techniques and procedures used by nation-state adversaries and cyber-criminal organizations,” said Raj Sivasankar, IronNet vice president of product management. “Our goal is to deliver enhanced, broad and early visibility of threats on enterprise networks–well before business impact.”

The update to the IronDefense solution is proof that IronNet continues to empower security teams to do more with fewer resources. This is of vital importance as organizations seem to struggle to find the level of security talent needed to secure the network against advanced and less sophisticated cyberattacks.

IronNet’s advanced threat detection technology and proactive threat intelligence allow the IronNet Collective Defense platform, powered by AWS, to serve as an early warning system for organizations participating in IronNet’s shared defense approach to cybersecurity.




Edited by Erik Linask
Get stories like this delivered straight to your inbox. [Free eNews Subscription]

MSPToday Editor

SHARE THIS ARTICLE
Related Articles

Real Estate Forecast 2025: Emerging Developments and Market Shifts

By: Contributing Writer    7/1/2025

Buying or selling property can be challenging. Rising mortgage rates and fluctuating home prices leave many uncertain about their next move. Business …

Read More

Protecting Business Assets with Smarter Security Frameworks

By: Contributing Writer    7/1/2025

Protecting your business is more challenging than ever. Cyber threats are increasing every day. Hackers target small and large businesses alike, searc…

Read More

Reimagining Public Transportation in the Era of Smart Mobility

By: Contributing Writer    7/1/2025

Public transportation can be frustrating. Buses stuck in traffic, late trains, and hard-to-navigate systems often leave people stressed or stranded. M…

Read More

SonicWall Powers Secure Access for Missouri MSP, Improving Cybersecurity and Network Access for Clients

By: Erik Linask    6/27/2025

With SonicWall, Stronghold Data delivers a modern, secure remote access solution that ensures access to networks and resources and improves cybersecur…

Read More

Guardz Unleashes AI-Driven ITDR to Combat Escalating Identity-Based Threats

By: Erik Linask    6/26/2025

The launch of Identity Threat Detection and Response (ITDR) gives MSPs the tools to defend SMBs against increasingly sophisticated attacks targeting u…

Read More