Network Detection and Response 2

The Evolution of SIEM

Blog, Network Detection and Response, Network Security, Self-Supervised AI, SIEM, Whitepaper / By Christian Wiens

It should be noted that SIEM platforms are exceptionally effective at what they initially were intended for: providing enterprise teams with a central repository of log information that would allow them to conduct search and investigation activities against machine-generated data. If this was all an enterprise cybersecurity team needed in 2020 to thwart attacks and stop bad actors from infiltrating their systems, SIEM would truly be the cybersecurity silver bullet that it claims to be.

Data Overload Problem: Data Normalization Strategies Are Expensive

Blog, Data Overload, Network Detection and Response, Network Security, Network Traffic Analysis, Self-Supervised AI, Whitepaper / By Christian Wiens

Financial institutions spend five to ten million dollars each year managing data. A recent Computer Services Inc (CSI) study reveals that most banks expect to spend up to 40 percent of their budgets on regulatory compliance cybersecurity, often adopting expensive data normalization strategies.

What is Predictive AI and How is it Being Used in Cybersecurity?

Blog, Network Detection and Response, Predictive AI, Self-Supervised AI, Threat Detection / By Ana Mezic

The predictive AI field of machine learning collects, analyzes, and tests data to predict future possibilities. AI’s neurological network is patterned on the human brain. But AI works on a scale that goes far beyond what is humanly possible. The top uses for predictive AI technologies to protect sensitive data and systems are in network detection and response (NDR), threat detection, and cybercrime prevention.

Webinar Recap: The Next-Generation AI Powered SOC Platform

MixMode News, Network Baselines, Network Detection and Response, Network Security, Network Traffic Analysis, Self-Supervised AI, SIEM, SOC, Threat Detection, Uncategorized / By Christian Wiens

One thing is clear: more spend does not equal more security and the next generation of cybersecurity tools will route out these inefficiencies.

Why a Platform With a Generative Baseline Matters

Blog, Network Baselines, Network Detection and Response, Network Security, Network Traffic Analysis, Self-Supervised AI, Whitepaper / By Christian Wiens

MixMode creates a generative baseline. Unlike the historically-based baselines provided by add-on NTA solutions, a generative baseline is predictive, real-time, and accurate. MixMode provides anomaly detection and behavioral analytics and the ability to suppress false positives and surface true positives.

Why The Future of Cybersecurity Needs Both Humans and AI Working Together

Blog, Context-Aware AI, Network Detection and Response, Network Security, Network Traffic Analysis, Predictive AI, Self-Supervised AI, SOC, Threat Detection, Unsupervised AI, Zero Day Attacks / By Ana Mezic

A recent WhiteHat Security survey revealed that more than 70 percent of respondents cited AI-based tools as contributing to more efficiency. More than 55 percent of mundane tasks have been replaced by AI, freeing up analysts for other departmental tasks.

NTA and NDR: The Missing Piece

Blog, Network Detection and Response, Network Traffic Analysis, SIEM, Whitepaper / By Christian Wiens

Most SIEM vendors acknowledge the value of network traffic data for leading indicators of attacks, anomaly detection, and user behavior analysis as being far more useful than log data. Ironically, network traffic data is often expressly excluded from SIEM deployments, because the data ingest significantly increases the required data aggregation and storage costs typically 3-5x.

The Problem with Relying on Log Data for Cybersecurity

Blog, Network Detection and Response, Network Traffic Analysis, Self-Supervised AI, SIEM, SOC / By Christian Wiens

One of the most prevalent issues impacting the effectiveness of security teams who use SIEM as their primary means of threat detection and remediation is the fact that data logs are an attractive medium for modern hackers to exploit.

Guide: The Next Generation SOC Tool Stack – The Convergence of SIEM, NDR and NTA

Blog, Network Detection and Response, Network Traffic Analysis, SIEM, SOC / By Christian Wiens

Traditional security vendors offering solutions like SIEM (Security Information and Event Management) are overpromising on analytics while also requiring massive spend on basic log storage, incremental analytics, maintenance costs, and supporting resources.

Whitepaper: Self-Supervised Learning – AI For Complex Network Security

Blog, Context-Aware AI, Network Detection and Response, Network Security, Network Traffic Analysis, Self-Supervised AI, Uncategorized, Unsupervised AI, Whitepaper / By Christian Wiens

Artificial Intelligence – or AI – has become a buzzword since it emerged in the 1950s. However, all AI systems are not created equal. In our white paper, “Self-Supervised Learning – AI For Complex Network Security,” Dr. Peter Stephenson explains the different “waves” of artificial intelligence. He uses the DARPA definitions for each of these …

Whitepaper: Self-Supervised Learning – AI For Complex Network Security Read More →

Encryption = Privacy ≠ Security

Adversarial AI, Blog, Cloud Security, Data Breach, Data Privacy, Network Detection and Response, Network Security, Network Traffic Analysis, Self-Supervised AI, Threat Detection, Zero Day Attacks / By Russell Gray

For the past few years, many have been talking about the changing “threat landscape” as it pertains to the increase in zero day, insider and phishing threats. While all of these threats are on the rise, and constitute a concern, there is, perhaps, an even larger shift presenting a threat to enterprises – the shift …

Encryption = Privacy ≠ Security Read More →

How a Massive Shift to Working From Home Leaves an Enterprise’s Cybersecurity Vulnerable

Blog, Network Detection and Response, Network Security, Network Traffic Analysis, Threat Detection, Uncategorized, Zero Day Attacks / By Ana Mezic

Many companies are scrambling to find a way to better protect their now-remote team of employees, and as they do so, hackers will take every advantage to find the weaknesses in these spread-out company networks.

New Video: Why is network data the best source for actionable data in cybersecurity?

Blog, Network Baselines, Network Detection and Response, Network Security, Network Traffic Analysis, Threat Detection / By Christian Wiens

In a recent blog post, our Head of Customer Success, Russell Gray, outlined the reasons why network data is the best source for actionable data in cybersecurity. He covered the limitations of each of the elements of a typical security stack (SIEM, Endpoint, and Firewall) and the importance of network traffic analysis (NTA) in the …

New Video: Why is network data the best source for actionable data in cybersecurity? Read More →

A Well-Equipped Security Team Could Save You Millions of Dollars a Year

Blog, Data Breach, Network Detection and Response, Network Security, Regulations & Compliance, Threat Detection, Unsupervised AI / By Christian Wiens

Data breaches are expensive. By now, most organizations are well aware of this fact. When it comes to resource planning, however, SecOps teams need concrete data to ensure adequate funding is available to handle a breach.

Network Data: The Best Source for Actionable Data in Cybersecurity

Blog, Network Baselines, Network Detection and Response, Network Security, Threat Detection, Unsupervised AI, Wire Data, Zero Day Attacks / By Russell Gray

With the right tool, your network data can now provide you with most valuable, actionable alerts in your security stack. What follows is a discussion of some of the reasons why you may want to look to your network first when trying to identify potential threats or attacks.

3 Cyberthreats Facing Federal and State Governments in 2020

Blog, Network Detection and Response, Network Security, Regulations & Compliance, Threat Detection, Zero Day Attacks / By Christian Wiens

Bad actors do not discriminate. Organizations across all sectors are at risk — corporations, non-profits, and increasingly, federal and state government entities. The U.S. Government Accountability Office (GAO) reported that security incidents increased by 1,300 percent from 2006 to 2015. This number is growing.

Staying CCPA Compliant with MixMode’s Unsupervised AI

Blog, Data Privacy, Network Baselines, Network Detection and Response, Network Security, Regulations & Compliance, Threat Detection, Unsupervised AI, Zero Day Attacks / By Ana Mezic

Companies are expected to spend up to $55 billion dollars on efforts to comply with the California Consumer Privacy Act (CCPA), which is still working out its final rules after going into effect this month.

5 Cybersecurity Threats That Will Dominate 2020

Blog, Network Detection and Response, Threat Detection / By Christian Wiens

At MixMode, we can’t help but imagine the flip side of all that potential. An increasingly connected cyber landscape means an increased number of potential targets for bad actors. New tech is exciting, but it’s often inherently vulnerable to cyberattacks.

Yesterday’s SIEM Solutions Can’t Combat Today’s Cyberthreats

Blog, Network Detection and Response, Threat Detection, Unsupervised AI, Zero Day Attacks / By Ana Mezic

While it’s true that having a SIEM is better than forgoing network monitoring all together, a standalone SIEM solution is simply insufficient in today’s cybersecurity landscape. Hackers and other bad actors have become more sophisticated — many of today’s cybercriminals can easily outsmart a standard SIEM setup.

Our Top 5 Cybersecurity Insights from 2019

Alert Reduction, Blog, Case Study, Network Baselines, Network Detection and Response, Threat Detection, Unsupervised AI, Whitepaper, Zero Day Attacks / By Christian Wiens

This year on the MixMode blog, we have covered headline stories, analyzed every pain point within network security, and shared what we believe to be some of the most innovative solutions to help you analyze network traffic, surface threats and anomalies, and stop attacks using autonomous AI.

MixMode Platform

MixMode Platform Demo

Solutions

Use Cases

Industries

Why MixMode

Company

Resources

Education