Virtualization Technology News and Information
Article
Search:
RSS
Follow VMblog.com:
Improve end user experience in VDI, DaaS and physical endpoint environments
Red Canary Announces Full Coverage of All Major Cloud Providers, Delivering Improved Visibility and Correlated Threat Activity Across Multicloud Environments

Red Canary announced full coverage of its detection and response capabilities to include all major cloud infrastructure and platform services providers, such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP). Red Canary can detect suspicious activity across all major cloud environments and seamlessly correlate that data with other leading cloud security products, enabling enterprises to find and stop threats before they can cause damage. Red Canary's vendor-agnostic approach underpins these new capabilities, providing security teams with actionable threat intelligence and comprehensive visibility from the control plane to containers and workloads.

Security teams rely on various tools, but integrating them internally for threat detection and response can be challenging, especially in large organizations with multicloud environments. Recent research shows that many businesses are currently using or planning to use at least two cloud infrastructure providers and about 31 percent are using four or more. As a result, IT and security teams are facing an increasing number of new cloud threats. In fact, in 2023, Red Canary detected cloud account compromises 16 times more frequently than in 2022, ranking it among the top five MITRE ATT&CK techniques analyzed across 58,000 confirmed threats identified in 216 petabytes of telemetry. 

With Red Canary, organizations can protect their cloud environments, identities, and endpoints, all using a single, intelligence-led security operations platform. This industry-leading approach significantly improves the productivity of overwhelmed security analysts by eliminating the need to look across multiple tools, sift through raw alerts from various sources, and manually analyze data. By trusting Red Canary to detect and respond to prevalent threats, internal security teams can have more time to focus on their business's specific security needs and requirements.

What's new:

Defend complex environments and streamline workflows with comprehensive detection and response coverage across all major cloud providers

  • Amazon: Amazon Web Services (AWS), including AWS CloudTrail and Amazon GuardDuty
  • MicrosoftMicrosoft Azure, Microsoft 365, Microsoft Sentinel, Microsoft Defender XDR, and Microsoft Defender for Cloud
  • Google: Google Cloud Platform (GCP) and Google Workspace

Get 24x7 access to cloud security expertise

  • Actionable threat intelligence: 400+ updated threat profiles provide deep insights into cloud threats and how adversaries operate in cloud environments
  • Run more effective tabletops: New scenarios allow customers to confidently understand, prepare for, and effectively respond to prevalent and emerging threats

Enhance threat protection across containers and production environments

  • Additional support for containers and Kubernetes: Improved metadata collection adds new insights for Linux-based environments empowering security analysts to quickly locate threat origins

Enrich threat data with identified risks and misconfigurations

  • Deeper integrations with cloud security posture management (CSPM) tools: Correlated alert data from vendors like Lacework and Wiz provides additional context that speeds up threat detection and response, and optimizes prevention efforts

Operationalize cloud-native SIEM investments 

  • Co-managed Microsoft Sentinel engagement: Expanded services to deploy and optimize SIEM technology include a security goals consultation along with analytics, threat hunting queries, automation playbooks, and dashboards to maximize SIEM value

"In today's rapidly evolving cybersecurity landscape, where cloud-based attacks are not just common but increasingly sophisticated, enterprises demand more than just protection-they seek clarity and control over their diverse attack surface. Red Canary's latest expansion is a testament to our commitment to meet this need head-on," said Mary Writz, SVP of Product Management, Red Canary. "By integrating comprehensive protection across all major public clouds we're not just securing the cloud, we're transforming how security teams interact and secure their business."

"We are thrilled to partner with Red Canary to help customers improve their cloud security posture," says Oron Noah, Head of Product Extensibility and Partnerships, Wiz. "Red Canary's expertise in threat hunting and incident response is a perfect complement to Wiz's deep cloud visibility and insights. Together, we can help customers detect and respond to threats across their cloud estates more quickly and effectively."

MDR for Cloud availability:

  • Support for Microsoft Azure is generally available
  • Support for Amazon Web Services is generally available
  • Support for Google Cloud Platform is currently in early access and expected to be generally available in Q2 of this fiscal year
  • Wiz support is expected to be generally available in Q2 of this fiscal year
Published Tuesday, March 05, 2024 12:38 PM by David Marshall
Filed under: ,
Get This Featured White Paper: DRaaS 101 eBook
You may also be interested in this white paper: Safeguarding Your Business in the Digital Age
Comments
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
Customer Connect
Global Digital
DTX
DTW-NA
innovatrix
GISEC
global-digital-cx
vExpert
Calendar
<March 2024>
SuMoTuWeThFrSa
252627282912
3456789
10111213141516
17181920212223
24252627282930
31123456