Savvy Trades and Investments

[2morrowsGains]

CSPI...Sumo Logic, Liquid, CSPI connection?? Hweb, you think there's a connection here?...

02/25/2020
ARIA Cybersecurity Solutions Integrates with Sumo Logic to Improve Cyber Intrusion Detection and Containment of Network-borne Attacks

The ARIA™ Software-Defined Security (SDS) solution was engineered to work seamlessly with other security tools, such as Sumo Logic’s Continuous Intelligence Platform, through open, RESTful APIs. The ARIA SDS Packet Intelligence application feeds NetFlow metadata from every packet to Sumo Logic, including traffic from usually overlooked internal network east-west paths. Once this enriched data is available in Sumo Logic, security professionals can quickly create queries to generate more accurate, comprehensive, and actionable dashboards. This information enables them to conduct real-time ransomware, malware, ATP and other intrusion investigation and take action to contain and stop threats before significant harm is done.

“This integration with ARIA is another way we are helping enterprise security teams leverage the power of continuous intelligence to accelerate their investigative processes which is vital to keep pace in a world of rapidly evolving threats,” said John Coyle, vice president, business development, Sumo Logic. “Our joint customers will greatly benefit from the real-time security intelligence and insights derived from the metadata traffic provided by ARIA to get deep visibility needed to preemptively stop network borne attacks.”

“The integration with the Sumo Logic Continuous Intelligence Platform is a win-win for both of our organizations,” stated William Bent, VP Cybersecurity Product Management, “Sumo customers are data savvy and those in cybersecurity are especially keen on leveraging internal network data to strengthen their security posture. The ARIA SDS solution is the perfect complement to Sumo as the improved network visibility naturally leads to better threat search queries and dashboards needed to identify and stop the cyberattacks that do the most harm.”
http://investorrelations.cspi.com/investor-relations/press-releases/press-release-details/2020/ARIA-Cybersecurity-Solutions-Integrates-with-Sumo-Logic-to-Improve-Cyber-Intrusion-Detection-and-Containment-of-Network-borne-Attacks/default.aspx


May 11, 2020 11:00 ET | Source: Sumo Logic

Liquid.com Bolsters Security for Cryptocurrency Exchange with Sumo Logic
Company Adopts Sumo Logic’s Cloud SIEM to Secure More than One Billion Platform Transactions Per Day and Support Globally Distributed Team and Multi-cloud Technology Stack

REDWOOD CITY, Calif., May 11, 2020 (GLOBE NEWSWIRE) -- Sumo Logic, the leader in continuous intelligence, today announced that global cryptocurrency platform, Liquid.com (Liquid), has chosen Sumo Logic Cloud SIEM to provide real-time security intelligence and insights to bolster application security and compliance for its leading platform which processes more than one billion transactions a day. By leveraging Sumo Logic Cloud SIEM, Liquid is able to maintain full visibility of its global cryptocurrency exchange and detect any potential threats, while supporting a globally distributed team and multi-cloud technology stack.

- “While the vast majority of our traffic is legitimate, a significant percentage comes from cyber groups who are looking for opportunities to breach our platform. We needed to add real-time security intelligence to monitor and analyze our log data as part of our already robust security program to protect our operations and extensive application portfolio and that’s where Sumo Logic comes in.”

After an extensive evaluation, Liquid selected Sumo Logic’s Cloud SIEM solution because of its extensive integration capabilities, easy setup, competitive pricing and outstanding support. Today, various teams across Liquid leverage the continuous intelligence delivered by Sumo Logic to ensure transaction legitimacy and security. With Sumo Logic, Liquid is able to automate its data analytics and log monitoring processes to quickly identify, investigate and remediate fraudulent transactions and potential API vulnerabilities before it can be exploited. With the time and resources saved because of Sumo Logic, Liquid’s security team is now able to be more proactive in identifying potential threats.
https://www.globenewswire.com/news-release/2020/05/11/2031236/0/en/Liquid-com-Bolsters-Security-for-Cryptocurrency-Exchange-with-Sumo-Logic.html

From Sumo Logic's website...

A New Integration between Sumo Logic and ARIA Cybersecurity Solutions

When thinking about many of the worst data breaches we’ve seen so far, there was one common element: The attacks were not detected while they were active on the internal networks.

It’s easy to think of the internal network as what’s onsite and directly in control. However, an organizations internal network also includes what extends beyond what’s on-premises, like instances within the public cloud and off-site hosted data centers.

Why is this important? Network perimeter defenses provide monitoring, and thus protection, for only a portion, perhaps 20%, of the attack surface. Once a threat successfully get insides the network it will spread laterally within the network, and go undetected. If you are only looking at this North-South traffic, you are leaving yourself vulnerable to the data breaches discussed above. Improved visibility of the internal, East-West, network traffic provides information necessary to detect threats earlier in the kill chain, as they are propagating.

ARIA Cybersecurity Solutions has developed an integration with Sumo Logic’s Continuous Intelligence Platform to close this network-visibility gap. With this integration, the ARIA SDS Packet Intelligence application feeds NetFlow metadata from every network packet to the Continuous Intelligence platform, including those east-west paths that are typically overlooked.

Once this data is available in the Continuous Intelligence platform, security professionals can quickly create queries to generate more accurate, comprehensive, and actionable dashboards. This real-time information enables them to conduct incident investigations related to ransomware, malware, intrusions including advanced persistent threats (APT), data exfiltration attempts, and other potential threats—all so they can take action and stop threats before significant harm is done.

Using the ARIA SDS Packet Intelligence Application within a Sumo Logic environment empowers end users to:

- Identify hard-to-detect attacks in real time early in the kill chain.
- Allow security analysts to accelerate investigative response to verify threats through automated workflows.
- Give security analysts the ability to stop the attacks at the threat conversation level. These teams can leave critical production or IoT devices online by blocking the threat conversations until the issue can be resolved.
- Visualize all internal network traffic, including those between devices, virtual machines, containers and IoT so proper connectivity policies can be developed, monitored, and enforced.

The ARIA SDS solution is the perfect complement to Sumo Logic as the improved network visibility naturally leads to better threat search queries to identify and stop the cyberattacks.
This new integration between the Sumo Logic Continuous Intelligence platform and the ARIA SDS Packet Intelligence application will now find and stop the types of cyber-attacks that do the most harm. It reduces both the time to investigate security threats and the effort to stop them when used in conjunction with the Continuous Intelligence Platform’s SOAR apps.
https://www.sumologic.com/blog/aria-cybersecurity-solutions/