How many new cyber threats are detected every day? A disproportionate amount, we are talking about thousands of monthly reports of discovered vulnerabilities, new types of attacks and modified versions of known malware . A mass of material capable of undermining even the most efficient security managers. constantly under stress and fear not being able to keep up with the hectic review of corporate security policies.
The issue is further complicated by the fact that these notices are not conveniently collected in a single portal, which obliges you to continuously consult several sources : a repetitive and stressful work, which occupies a good portion of the security officers. Kasperksy proposed his solution to the problem: Cybertrace .
Kaspersky Cybertrace - all security feeds under control
Kaspersky Cybertrace performs an apparently simple task: it scans the main sources that publish security advisors - therefore also the competitors of the Russian company - and puts them in relation with the security events of the company systems . If an IoC (Compromise Indicator) is detected, it will send an alert to the SIEM (Security Information and Event Management - systems that monitor the corporate network to prevent attacks and intrusion) so as to keep the resources involved under strict control.
In practice, Cybertrace automates a series of repetitive operations and effectively filters information, avoiding overloading the company's SIEMs.It is not an alternative to SIEM, rather: it integrates with them and supports the most widespread, such as IBM QRadar, Splunk, ArcSight ESM, LogRhythm, RSA NetWitness and McAfee ESM.