Operations | Monitoring | ITSM | DevOps | Cloud

Sumo Logic

sumologic

Cloud SIEM: Getting More Out of Your Threat Intelligence - 3 Use Cases for IOCs

Jul 14, 2020 By Sumo Logic In Sumo Logic
Ever since JASK was founded, we have heavily integrated with threat intelligence platforms to gain context into attacker activity through indicators of compromise (IOCs). Now that we have joined Sumo Logic, our customers have the ability to pull in more data than ever making this feature even more powerful. One of our tightest integrations is with the Anomali (formerly ThreatStream) platform.
Read Post

Continuous Intelligence: Why it's even more important post-pandemic

Jul 13, 2020 By Sumo Logic In Sumo Logic
The COVID-19 pandemic has caused a business discontinuity in which digital transformation has gone from evolution to explosion overnight--doubling, tripling and quadrupling cloud application and infrastructure workloads. As these digital businesses and services scale to meet demand, the need to effectively monitor, troubleshoot and secure these services has never been more dependent on the need to collect, index and analyze all data in real time to speed response, improve services and remain agile under these conditions to drive better outcomes.
View Video
sumologic

The automation hype is real for SOC teams: unpacking the Dimensional Research "2020 State of SecOps and Automation" report

Jul 9, 2020 By Dana Torgersen In Sumo Logic
As more and more enterprises shift to the cloud, the pressure on SOC teams to protect them against threats rises exponentially. They are the very first line of defense against data breaches and cyber threats that become more frequent and more sophisticated.
Read Post
sumologic

Building a Security Practice Powered by Cloud SIEM

Jul 9, 2020 By Melissa Liton In Sumo Logic
It has never been a more challenging (or better) time to be a service provider for managed security services. With an estimated 1,200+ vendors selling a variety of security solutions today, businesses are looking for help to manage the complexities of supporting these technologies while protecting critical data.
Read Post
sumologic

Distributed Tracing & Logging - Better Together

Jul 8, 2020 By Twain Taylor In Sumo Logic
Monitoring requires a multi-faceted approach if DevOps teams want end-to-end visibility and deep insight into issues. This is especially true in the case of modern microservices applications, which are essentially collections of distributed services that talk to each other over a service mesh. With monolithic applications, requests can be tracked easily from the client to the server and back, but with modern applications, every request passes through numerous services before completion.
Read Post
sumologic

Defense in depth: DoublePulsar

Jul 7, 2020 By Sumo Logic In Sumo Logic
Unless you’ve been living under a rock you are probably familiar with the recent Shadow Brokers data dump of the Equation Group tools. In that release a precision SMB backdoor was included called Double Pulsar. This backdoor is implemented by exploiting the recently patched Windows vulnerability: CVE-2017-0143. For detection, we are going to first focus on the backdoor portion of the implant, hunting for traces left behind on the network.
Read Post
sumologic

Improving Application Quality through Log Analysis

Jul 2, 2020 By Scott Fitzpatrick In Sumo Logic
Throughout the history of software development, one statement has remained true: no application is perfect. Due to that fact, development organizations must work with all resources at their disposal to limit the impact that application problems have on the end-user. Server log files represent an important resource that should be referred to during the process for troubleshooting any application issue.
Read Post
sumologic

Domain Hijacking Impersonation Campaigns

Jul 1, 2020 By Kevin Stear In Sumo Logic
A number of domain “forgeries” or tricky, translated look-alikes have been observed recently. These attack campaigns cleverly abuse International Domain Names (IDN) which, once translated into ASCII in a standard browser, result in the appearance of a corporate or organization name that allows the targeting of such organization’s domains for impersonation or hijacking. This attack has been researched and defined in past campaigns as an IDN homograph attack.
Read Post
sumologic

Continuous Intelligence for Atlassian tools and the DevSecOps Lifecycle (Part 2)

Jun 30, 2020 By Drew Horn In Sumo Logic
Today’s modern deployment pipeline is arguably one of the most important aspects of an organization’s infrastructure. The ability to take source code and turn it into a production application that’s scalable, reliable and highly available has become an enormous undertaking due to the pervasiveness of modern application architectures, multi- or hybrid-cloud deployment strategies, container orchestration and the leftward movement of security into the pipeline.
Read Post
Subscribe to Sumo Logic

Copyright © 2024 OpsMatters™. All rights reserved.