Resources

Read More

Threat Research

Detecting LockerGoga Targeted IT/OT Cyber Sabotage/Ransomware Attacks

The Securonix Threat Research Team has been closely monitoring the LockerGoga targeted cyber sabotage/ransomware (TC/R) attacks impacting Norsk Hydro (one of the largest aluminum companies worldwide), Hexion/Momentive (a chemical manufacturer), and other companies’ IT and operational technology (OT) infrastructure, causing...
Read More

Detecting Persistent Cloud Infrastructure/Hadoop/YARN Attacks Using Security Analytics: Moanacroner, XBash

In recent months, we have been observing an increase in the number of automated attacks targeting exposed cloud infrastructure/Hadoop/YARN instances. Some of the attacks we have been seeing – for example, Moanacroner (a variant of Sustes) – are fairly trivial,...
Read More

British Airways Breach: Magecart Formgrabbing Supply Chain Attack Detection

The data breach suffered by British Airways earlier this year affected around 380,000 customers and resulted in the theft of customer data including personal and financial details. The attack was highly targeted and utilized customized JavaScript/digital card skimmers loaded from...
Read More

Webinars

[PANEL] CISO Challenges & Opportunities

What keeps CISOs up at night? What challenges are they facing on a daily basis? And what opportunities are they seeing in the industry? Join experts from leading security organizations as they discuss strategies, solutions and technologies CISOs use in...
Read More

MITRE ATT&CK: Take Your SIEM and Insider Threat Detection to the Next Level

The MITRE ATT&CK framework is seeing rapid adoption across security teams worldwide. Join Oleg Kolesnikov  and Sujay Doshi as they discuss key insights into how you can better leverage the framework from a SIEM and insider threat/user and entity behavior...
Read More

Surfing a Tsunami: How SOAR Keeps Security Operations Ahead of Human Limitations

Join Joseph Loomis, Founder and CSO of CyberSponse, and Jon Garside, Director of Product Marketing at Securonix, as they discuss the evolving threat landscape in an increasingly common hybrid cloud enterprise environment. Discover how analytics-driven security automation lowers mean time...
Read More

Datasheets

Securonix Security Orchestration Automation and Response Data Sheet

The approach of sending alerts directly from legacy security information and event management (SIEM) to security orchestration, automation, and response (SOAR) creates an overload in the SOAR solution with too many false positives that are not actionable. By adding a...
Read More

Securonix Network Traffic Analysis Data Sheet

Customers today struggle to detect the sophisticated slow and low attacks which require monitoring a blend of network traffic activity, user actions, and system behavior patterns. Stand-alone network traffic analysis tools can monitor traffic and detect network traffic anomalies, however,...
Read More

Securonix Cloud Platform Data Sheet

As cloud usage has grown, the need to secure your cloud applications and data has also grown. Legacy on-premises solutions often struggle to gain adequate visibility into the cloud, while the capabilities of cloud-based solutions often haven’t caught up to...
Read More

Analyst Reports

Gartner: Technology Insight for the Modern SIEM

The cybersecurity landscape is getting more complex. Hackers continue to innovate, and business technologies generate increasing amounts of data. This makes legacy security monitoring solutions obsolete as they struggle with their inability to scale and weak rule-based threat detection techniques....
Read More

A SANS Review of Securonix Next-Gen SIEM

The Securonix Next-Gen SIEM platform includes many advanced features for reducing detection and response time for security operations and investigations and processing large quantities of data from numerous sources in real time. Given the challenges organizations face in sifting through...
Read More

Quadrant Solutions: Securonix Knowledge Brief

Securonix is Recognized as 2018 Technology Leader in the UEBA Market Quadrant Knowledge Solutions’ recent study “Market Outlook: User and Entity Behavior Analytics (UEBA), 2018-2023, Worldwide” analyses market dynamics, growth opportunities, emerging technology trends, and the vendor ecosystem of the...
Read More

White Papers

Insider Threats: Why It Continues to Matter Today

Discover how to build an effective insider threat program. The key to a successful insider threat program is to find synergies between people, process, and technologies which are suitable for that corresponding organization, based on various factors such as organization...
Read More

2019 Insider Threat Survey Report

The 2019 Insider Threat Report reveals the latest trends and challenges facing organizations, how IT and security professionals are dealing with risky insiders, and how organizations are preparing to better protect their critical data and IT infrastructure. 68% of organizations...
Read More

Securonix SIEM with Intelligent Analytics

Intelligent security analytics separates the wheat from the chaff for security analysts, using machine learning, behavioral analytics, heuristic threat detection, and signature-based pattern identification to prioritize actionable alerts. The Securonix threat detection and analytics framework uses a multi-stage process to...
Read More

Case Studies

Iconic Engine Monitors Security Events with Securonix Next-Gen SIEM on AWS

Iconic Engine, powered by Digital Domain, is a leading provider of an end-to-end extended reality (XR) solution, providing a complete workflow to power and serve the global XR industry. Learn why Iconic Engine chose Securonix Next-Gen SIEM, deployed on the AWS...
Read More

Simeio Uses Securonix Next-Gen SIEM on AWS for Advanced Threat Detection

Simeio is an identity and access management (IAM) solution provider that leverages AWS cloud infrastructure to deliver integrated IAM solutions such as access governance, privileged identity management, and identity administration. Simeio, with its end-to-end identity management solution offering, protects over...
Read More

AmerisourceBergen Uses Securonix Next-Gen SIEM to Reduce Risk

AmerisourceBergen is one of the world’s largest pharmaceutical distributors. They are based in the United States and have over 150 global offices in more than 50 countries worldwide. It was founded over 100 years ago and as of 2019 is...
Read More

Solution Briefs

Securonix – CyberArk Integration – Partner Solution Brief

By integrating Securonix and CyberArk, organizations receive a world-class comprehensive protection and prevention solution for mission-critical identity management and privileged access security. Proactively, CyberArk detects and prevents the latest sophisticated attacks that attempt to misuse privileged access.
Read More

Securonix – IBM Resilient Integration – Partner Solution Brief

When integrated, Securonix and IBM Resilient deliver world-class comprehensive protection, prevention, and orchestration to handle your organizations’ cybersecurity needs. Together, this solution provides you with actionable intelligence on your highest risk threats in real-time, so you have the contextual information...
Read More

Securonix for PTC Windchill

The cyber security landscape continues to increase in complexity. Hackers continue to innovate, business technologies generate increasing amounts of data, and legacy perimeter defenses struggle with modern insider and cyberthreats. Securonix Security Analytics Platform enables you to detect, investigate, and...
Read More

Infographics