Identity Threat Data, Cloud Capabilities, and MITRE ATT&CK Highlight Update
Santa Barbara, CA, August 29, 2023 –MixMode, the leader in delivering generative AI cybersecurity solutions for real-time threat detection and response at scale, today announced the availability of its quarterly Generative AI Platform update. Continuing to innovate with new features that drive threat detection and response capabilities in large data environments, the latest updates include expanded cloud data ingestion capabilities, including support for the ingestion of Identity Data, integrations with the MITRE ATT&CK Framework, and expanded deployments across cloud environments.
“Enterprise organizations continue to struggle with real-time detection capabilities in large data environments,” said Russell Gray, MixMode’s Head of Product. “MixMode continues to innovate and strengthen our platform capabilities to stand out from the competition.”
Highlights include:
Data Ingestion Capabilities: Most organizations use identity and access management solutions like Okta to address their operational needs. However, from a security perspective, 75% of organizations that forward identity log sources to their SIEM do not use them to detect threats. Now in BETA for Okta users, MixMode Identity Threat Detection continuously monitors an Okta environment and correlates behavioral, access, and log data to detect attacks and lateral movement in real-time. Additional identity data will continue to be added in the coming months.
Cloud Capabilities: The MixMode Platform is the only solution that provides real-time threat detection for cloud environments, including Cloud Trail and Flow Logs, by monitoring API call activities and alerting users of any deviations from expected behavior. With this release, we’ve introduced a new analytic feature that tracks anomalous users for two weeks to assess ongoing risk. We’ve also updated our CloudTrail API dashboard to include highlighting indicators to show CloudTrail-specific details.
AI Analytic Updates: The MITRE ATT&CK Framework has become the de facto standard for understanding how attackers operate, providing a systematic approach to detect, prevent, and respond to threats effectively. MixMode continues to integrate the framework into the MixMode Platform, allowing users to view their alerts in the context of MITRE ATT&CK tactics, techniques, and procedures (TTP) across the enterprise matrix. Users can now view full details from the matrix in each TTP card and select a specific MITRE TTP when creating a task that surfaces an alert.
Additional insights and analytic enhancements have been made to improve usability, workflows, and enhanced investigation capabilities.
Reach out to your MixMode representative to learn more about the features in this latest release, or request a demo here.
Follow us here for more updates:
About MixMode:
MixMode is the leader in delivering generative AI cybersecurity solutions at scale. MixMode offers a patented, self-supervised learning Platform designed to detect known and unknown threats in real-time across cloud, hybrid, or on-prem environments. Large enterprises with big data environments, including global entities in financial services, Fortune 1K commercial enterprises, critical infrastructure, and government sectors, trust MixMode to protect their most critical assets. Backed by PSG and Entrada Ventures, the company is headquartered in Santa Barbara, CA. Learn more at www.mixmode.ai.
Read this full announcement here
Other MixMode Articles You Might Like
Zero Day Summer is No Vacation
FBI Warns of Adversary Malicious AI Use While Encouraging AI Cyber Adoption
MixMode Highlighted in Gartner® Hype Cycle™ for Security Operations 2023
Combating Alert Fatigue with the MixMode AI Assistant
Securing Your Cloud Environment: Understanding and Addressing the Challenges in Cloud Security
MixMode Invited to Participate on ‘US Blue Team’ in Annual International Cybersecurity Exercise