Follow on Google News News By Tag Industry News News By Location Country(s) Industry News
Follow on Google News | Bit9 + Carbon Black Announces Carbon Black 5.0Enables incident responders to dramatically reduce malware dwell time with instant intervention and remediation of advanced, targeted attacks
By: Bit9 + Carbon Black Carbon Black version 5.0 delivers four significant innovations: 1. Live Response: With the addition of Carbon Black Live Response, security operations center (SOC) analysts and incident responders can more quickly determine the root cause of an attack, stop the spread of an attack, terminate an attack, remediate affected machines and incorporate third-party incident response tools—all from a single console. · One-click endpoint Isolation enables responders to instantly disrupt active intrusions by quarantining and isolating one or multiple endpoints from the network while still maintaining an active connection of the system under investigation to the Carbon Black server. By containing endpoint threats at the moment of discovery, responders can limit damage and potential data loss. This also enables security operations personnel or IR teams to perform more conclusive and surgical investigations on isolated endpoints while eliminating the ability of malware to spread or data to be exfiltrated. · Investigate any endpoint to understand its current state, via a remote capability that allows for identifying all currently running processes, understanding the file inventory, current network activity and registry settings, and retrieving files from—and delivering files and tools to—a remote host. · Intervene during ongoing attacks, by killing any running process. · Make modifications on the endpoint to remediate attacks, such as removing malware, cleaning registry settings, removing files, and validating the success of that remediation. 2. KPI Dashboards for Instant Endpoint Insight: With Carbon Black’s new dashboards, security teams gain instant insight into key endpoint and incident response performance indicators across their entire environment. This enables organizations to understand and articulate the state of their endpoint detection and response capabilities. As one of the first security solutions to measure and chart dwell time, Carbon Black enables enterprises to improve their response processes and procedures over time to optimize the productivity of their security teams. 3. Enriched Threat Intelligence, Detection and Alerting: Carbon Black improves the detection capabilities of organizations by leveraging the latest enhancements to the Bit9 + Carbon Black Threat Intelligence Cloud (https://www.bit9.com/ 4. Alert Prioritization and Tracking: Many enterprises suffer from alert fatigue or struggle to understand exactly what to look for within their environment. Carbon Black 5.0 now enables security teams to turn noisy detection into optimized threat discovery. Users can rate and adjust alerts by severity, and mark and track alert resolution all from a single console. Responders can manage their detection events with greater efficiency and accuracy to accelerate threat discovery and improve the overall speed of investigations. Bit9 + Carbon Black Executive Quote: Brian Hazzard, vice president of product management: “Unlike any other product on the market, Carbon Black enables the largest enterprises to effectively prepare for potential compromise and breach. We do this through our industry-leading continuous recorder that proactively collects data at the endpoint. Carbon Black 5.0 combines the power of that endpoint visibility with new Live Response capabilities to deliver the most complete and comprehensive IR solution on the market. No other single solution can deliver the complete value of both a continuous recorder and Live Response capabilities to enterprises, IR companies and MSSPs.” Analyst Quote: Charles Kolodgy, research vice president - Secure Products for IDC “The endpoint security market is crowded with vendors that offer detection and analysis or containment and eradication capabilities. What is missing is a solution that offers a combination of continuous recording of the endpoint state, malicious activity discovery, attack termination by killing processes, and immediate remediation. Carbon Black 5.0 is offering this combination of features.” Analyst Quote: David Monahan, research director, Security and Risk Management for Enterprise Management Associates “Carbon Black 5.0 delivers continuous recording and Live Response capabilities that set it apart from the competition. Breach may be inevitable, but the ability to leverage contextual intelligence to quickly identify threats reduces dwell time and stops exfiltration, saving organizations— About Bit9 + Carbon Black Bit9 + Carbon Black provides the most complete solution against advanced threats that target organizations’ More than 1,000 organizations worldwide—from Fortune 100 companies to small enterprises— Bit9 and Carbon Black are registered trademarks of Bit9, Inc. All other company or product names may be the trademarks of their respective owners. End
Account Email Address Account Phone Number Disclaimer Report Abuse
|
|