Black Hat USA 2022 Cybersecurity Conference Live Blog: MDR, XDR, and MSSP Updates

Thousands of cybersecurity professionals and MSSP leaders gathered this week at the Black Hat USA 2022 conference in Las Vegas. The common theme across most MSSPs and on-premises MSPs: how service providers can further automate their managed security services to strengthen customer defenses, ease security analyst workloads, and address talent shortages associated?

With these goals in mind, here is an overview of the latest MDR, XDR and related automation developments from the conference…

5. Partnership – Data Security: A coalition of cybersecurity and technology organizations has announced an open source effort to break down the data silos that hamper security teams. The Open Cybersecurity Schema Framework (OCSF) project was designed and initiated by AWS and Splunkand includes contributions from Cloudy, CrowdStrike, DTEX, IBM Security, Iron Net, JupiterOne, Okta, Palo Alto Networks, Quick7, Selling power, Securonix, Sumo Logic, Tanium, Trend Micro and Z-scale. All members of the cybersecurity community are welcome to use and contribute to the OCSF.

4. Threat detection and response: Lace announced new features that uncover more critical infrastructure threats while enabling teams to collaborate more effectively in investigating and responding to alerts, the company claims.

3. AI Innovation: CrowdStrike introduced AI-powered Indicators of Attack (IoA) and new fileless attack prevention and visibility capabilities for stealthy cloud intrusions. Abilities are available on the CrowdStrike Falcon platform and powered by the CrowdStrike Security Cloud.

2. XDR (extended detection and response):

  • Anomali released a quarterly platform update with additional threat intelligence and expanded detection and response (XDR) capabilities.
  • netwitness end of August 2022 plans to launch NetWitness Platform XDR 12. The update includes “enhanced scanning capabilities that can find known and unknown threats even faster, to reduce latency and enable early response and remediation.” that adversaries cannot successfully execute a harmful attack,” the company said.
  • SentinelOne unveiled XDR Ingest, which provides customers with an “unlimited data platform to ingest, curate, correlate, search and act on all enterprise security data, real-time and historical, from any source,” the company said.

1. More information about black hats: Do you have news to share from the conference? Email me the details ([email protected]) and we’ll consider mentioning them to our readers.

Blog originally published on August 10, 2022. Updated regularly thereafter.

Source link