Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

9/26/2012
09:34 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Securonix And McAfee Expand Insider And Advanced Persistent Threat Detection Capabilities Through Security Innovation Alliance

Integrated offering provides a comprehensive security intelligence solution that can detect both known and unknown threats

LOS ANGELES, Sept. 26, 2012 /PRNewswire/ -- Securonix, The Security Intelligence Company, today announced that it has expanded its technical collaboration with McAfee through the McAfee® Security Innovation Alliance(TM) (SIA) partner program. Securonix has integrated its Security Intelligence Platform with McAfee Enterprise Security Platform (ESM), McAfee's security information and event monitoring (SIEM) solution, providing it rich identity, access, and behavior risk context and anomaly detection for identification and rapid response to insider and advanced threats.

The integrated offering provides a comprehensive security intelligence solution that can detect both known and unknown threats. The combined solution detects anomalies in activity logs and risk ranks these anomalies so organizations can focus their investigations on the highest risk activities and users. By using an innovative behavior-based anomaly detection technique in conjunction with peer group analysis technique, the solution detects abnormal usage patterns over billions of logged events.

"The growing demand and phenomenal market growth our company is experiencing is a continued validation of our solution," says Sachin Nayyar, CEO and Founder of Securonix. "The integration with McAfee ESM enables McAfee to deliver a more holistic enterprise security platform with actionable security intelligence and is a natural continuation of our existing partnership with McAfee DLP. The new ESM integration tackles the issues that companies are facing today with Big Security Data and the inability to quickly respond to emerging threats, which unnoticed until much damage is done."

"Securonix's advanced identity correlation and behavior analysis capabilities enable us to tackle some of the most complex and challenging insider and advanced targeted threat events plaguing our customers," said Ed Barry, Vice President of Security Innovation Alliance, McAfee. "We're excited to work with Securonix to bring these significant capabilities to the market."

McAfee Enterprise Security Manager (ESM) expands SIEM from simple event analysis to accurate and actionable information through the integration of threat, user and countermeasure intelligence. For more information on McAfee SIA and McAfee ESM please visit: http://www.mcafee.com/sia and http://www.mcafee.com/esm.

About Securonix

Securonix provides the industry's first behavior based, signature-less anomaly detection engine that features advanced identity correlation, automated risk scoring and abnormality detection for access and activities. For further information email [email protected]

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
I 'Hacked' My Accounts Using My Mobile Number: Here's What I Learned
Nicole Sette, Director in the Cyber Risk practice of Kroll, a division of Duff & Phelps,  11/19/2019
DevSecOps: The Answer to the Cloud Security Skills Gap
Lamont Orange, Chief Information Security Officer at Netskope,  11/15/2019
Attackers' Costs Increasing as Businesses Focus on Security
Robert Lemos, Contributing Writer,  11/15/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Navigating the Deluge of Security Data
In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-19033
PUBLISHED: 2019-11-21
Jalios JCMS 10 allows attackers to access any part of the website and the WebDAV server with administrative privileges via a backdoor account, by using any username and the hardcoded dev password.
CVE-2019-19191
PUBLISHED: 2019-11-21
Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file that calls chown on files in a directory controlled by the service user (the shibd account) after installation. This allows the user to escalate to root by pointing symlinks to files such as /etc/shadow.
CVE-2019-15511
PUBLISHED: 2019-11-21
An exploitable local privilege escalation vulnerability exists in the GalaxyClientService installed by GOG Galaxy. Due to Improper Access Control, an attacker can send unauthenticated local TCP packets to the service to gain SYSTEM privileges in Windows system where GOG Galaxy software is installed....
CVE-2019-16405
PUBLISHED: 2019-11-21
Centreon Web 19.04.4 allows Remote Code Execution by an administrator who can modify Macro Expression location settings.
CVE-2019-16406
PUBLISHED: 2019-11-21
Centreon Web 19.04.4 has weak permissions within the OVA (aka VMware virtual machine) and OVF (aka VirtualBox virtual machine) files, allowing attackers to gain privileges via a Trojan horse Centreon-autodisco executable file that is launched by cron.