Cloud

1/18/2018
10:10 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Cylance and JASK Partner to Integrate Endpoint Security Solution into JASKs Autonomous Security Operations Center Platform

Technology Alliance Provides Customers a Single Source for Unprecedented Visibility Across Data and Assets from Endpoints to Data Center

SAN FRANCISCO & IRVINE, Calif.--(BUSINESS WIRE)--JASK and Cylance Inc. today announced a technology alliance through which JASK’s Autonomous Security Operations Center (ASOC) platform will integrate with the CylancePROTECT® AI-powered endpoint security platform.

The JASK ASOC platform frees analysts from the mundane data collection, aggregation and normalization effort to become proactive threat investigators and responders. Driven by AI and machine learning, the JASK ASOC platform couples data collection and visibility from a multitude of sources with AI-based actionable insights that produce meaningful recommendations to IT department staff. CylancePROTECT redefines what antivirus (AV) can and should do for organizations by leveraging artificial intelligence to detect and prevent malware from executing on endpoints in real time.

Through the integration, joint customers will be able to ingest Cylance Threat Event, Alert, Threat Classification and Audit logs into JASK, offering improved context and visibility. For example, the ability to autonomously bring together Cylance data about malware on an endpoint with information about malicious application behavior presented in JASK’s ASOC platform provides unprecedented insights and actionable intelligence without all of the manual work required today.

“The integration of JASK and Cylance gives security operations teams the ability to tap into network data, which provides important context that has been missing,” said Malcolm Harkins, chief security and trust officer at Cylance. “Security analysts gain more knowledge that allows them to make faster, more precise decisions about threats – thereby reaching new levels of efficiency and effectiveness.”

The combination of JASK and Cylance delivers customers a single source for unparalleled visibility across all data and assets. Cylance reduces noise and identifies unknown threats, while JASK uniquely fuses its data with information from existing security solutions and applies AI and machine learning to automate a smarter correlation and analysis of threat alerts to a meaningful incident.

“This partnership that integrates two AI-driven technologies delivers customers an unprecedented level of insights, representing the evolution of future SOC requirements,” said Greg Martin, CEO of JASK. “Collaborating with a known industry innovator like Cylance elevates SOC teams’ ability to better stay ahead of adversaries.”

The agreement with Cylance demonstrates how JASK is focused on building its ecosystem of security partners to better combat malicious cyber actors. For more information on becoming a JASK technology alliance or reseller partner, please visit https://jask.ai/partners/.

 

About JASK

JASK is modernizing security operations to reduce organizational risk and improve human efficiency. Through technology consolidation, enhanced AI and machine learning, the JASK Autonomous Security Operations Center (ASOC) platform automates the correlation and analysis of threat alerts, helping SOC analysts focus on highest-priority threats, streamlining investigations and delivering faster response times. www.jask.ai

 

About Cylance® Inc.

Cylance is the first company to apply artificial intelligence, algorithmic science and machine learning to cybersecurity to prevent the most advanced security threats in the world. Using a breakthrough predictive analysis process, CylancePROTECT quickly and accurately identifies what is benign and what is a threat, and prevents malicious code from ever executing on a targeted system. By coupling advanced machine learning and artificial intelligence with a unique understanding of an attacker’s mentality, Cylance provides technology and services that are truly predictive and preventive against the most advanced threats. www.cylance.com

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Election Websites, Back-End Systems Most at Risk of Cyberattack in Midterms
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/14/2018
Intel Reveals New Spectre-Like Vulnerability
Curtis Franklin Jr., Senior Editor at Dark Reading,  8/15/2018
Australian Teen Hacked Apple Network
Dark Reading Staff 8/17/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2011-2765
PUBLISHED: 2018-08-20
pyro before 3.15 unsafely handles pid files in temporary directory locations and opening the pid file as root. An attacker can use this flaw to overwrite arbitrary files via symlinks.
CVE-2018-15594
PUBLISHED: 2018-08-20
arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtual guests.
CVE-2018-15572
PUBLISHED: 2018-08-20
The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks.
CVE-2018-15573
PUBLISHED: 2018-08-20
** DISPUTED ** An issue was discovered in Reprise License Manager (RLM) through 12.2BL2. Attackers can use the web interface to read and write data to any file on disk (as long as rlm.exe has access to it) via /goform/edit_lf_process with file content in the lfdata parameter and a pathname in the lf...
CVE-2018-15574
PUBLISHED: 2018-08-20
** DISPUTED ** An issue was discovered in the license editor in Reprise License Manager (RLM) through 12.2BL2. It is a cross-site scripting vulnerability in the /goform/edit_lf_get_data lf parameter via GET or POST. NOTE: the vendor has stated "We do not consider this a vulnerability."