I've been asked a few times why network monitoring is so important in the cloud. Log4j and application layer visibility is one (of many!) great reminders of why - check out this note by Corelight 's own Ricky Lin for more: corelight.com/blog/applicati…

Appreciate Help Net Security's coverage on the trend of Two SIEMs (for IR vs threat hunting), and found Omer Singer's related LinkedIn discussion on alternative platforms like Snowflake worth a read as well: linkedin.com/posts/omer-sin… Corelight The Zeek Network Security Monitor

Worth reading The Wall Street Journal's Christopher Mims 🤌 article on the cyber aspect of the Russian war - brings some meat to the topic. Found the comments from Netskope's Ray Canzanese and Sophos' @chetwisniewski solid (in addition to Corelight's Jean Schaffer of course).

Even if you are booked at 11 am ET / 8 am PT tomorrow, sign up - it will be worth it, even on recording! I like Alex Kirk's style ...

After having LOTS of defender conversations on this, happy to share their insight on moving to "evidence" as a strategy for disrupting advanced attacks. We play a part of course, but it is much bigger than any one tech / vendor: corelight.com/blog/dont-trus… Corelight The Zeek Network Security Monitor

If you've been interested in The Zeek Network Security Monitor but don't have the time to set up your own demo environment (who does?!?) check out the CrowdStrike Falcon LogScale Community Edition. Great SIEM to check out some great data! Thanks CrowdStrike! Corelight humio.com/whats-new/blog…

As we unpack what "evidence based strategy" really means our first thoughts are on accelerating IR / TH. However, the downstream impact on defensible disclosure is larger in many ways. Richard Bejtlich 💾 🇺🇦's thoughts are worth a read: corelight.com/blog/network-e… Corelight The Zeek Network Security Monitor

ZeekWeek22 is coming up - Oct 13-14 in Austin! Great people and insights on network defense. Can’t wait to see the day 1 keynote by Wendi Whitmore SVP Unit 42 at Palo Alto Networks - hearing her is enough to justify the trip on its own! Corelight The Zeek Network Security Monitor

It is a privilege for all of us at Corelight to support the CrowdStrike team: adding the best network insight to such a strong team and tech platform is an unqualified win for defenders around the world. More at corelight.com/company/coreli…

Can’t remember ever seeing a cyber company on Super Bowl advertising- and it was a good one. Way to go CrowdStrike

Thanks Michael Novinson! Beyond threat detection, network visibility accelerates IR through attack scoping + confirming containment / remediation. This drives our work with CrowdStrike + defenders WW. More to come! ISMG Network News Corelight inforisktoday.com/corelight-purs…

If you're heading to #RSAC2023 this week and want to see what Corelight is doing with OpenAI, swing by booth 1555 in the South Hall. Happy to show you!

Don't know what criteria The Cyber Express By Cyble had for the top 50 CISO's list, but imho the keys for Corelight's Bernard Brantley are: 1. Read + learn maniacally 2. Build cross-org bridges 3. Contribute broadly at the exec table Easy to say, hard to do! lnkd.in/dXbh4eZ2

Old but true: endpoint for depth, network for breadth! How to make them work together? See next Tues (6/27) at 7 am PDT when Corelight and CrowdStrike show how do drive integrated IR without breaking the bank lnkd.in/gejSE-KD #NetworkSecurity #NDR #EDR #DFIR

When companies all around the world are learning how to build prompts and train gen AI models, Corelight & The Zeek Network Security Monitor "just work" in ChatGPT right out of the gate. No vendor dependency, no lag, just instant value. Sharing a few thoughts on why: linkedin.com/pulse/power-op…

Solid writeup from Mandiant (part of Google Cloud) on how their analysts are using LLM's (here: Bard) for investigation. Agree wth the approach, have seen our customers do the same! Worth a read: mandiant.com/resources/blog…

Love seeing this. From what I've seen, this is great leverage of deep expertise (CISA) + direct help on concrete threats = real help across the energy sector. Good tax dollars at work! databreachtoday.com/cisas-new-cybe…

Ransomware is a hard problem (yes, captain obvious!). Thanks Trinity Chavez of NYSE 🏛 for the chance to share more about how we help defenders use visibility to deny ransomware demands: lnkd.in/guJfWw5E Corelight

What kind of company would Accel, CrowdStrike and Cisco Security all invest in? I’m delighted to announce @Corelight's Series E funding and dive into that question. linkedin.com/pulse/fuel-sec… #securityAI #cloudsecurity #nextgenSIEM #NDR #OpenSource

In today's "quick news bite" world I respect the longer-form journalism of Patrick Gray. This week: grading journalist responses to the Trump campaign hack (+more) news.risky.biz/fool-me-once-i… FD: Corelight sponsors; more to come on my thoughts re: CISA advisories to date!