Anton on Security

NOVEMBER 3, 2020

My post “Why is Threat Detection Hard?” proved to be one of the most popular in recent history of my new blog. In this post, I wanted to explore a seemingly obvious, while surprisingly fascinating aspect of detection: uncertainty. Threat detection, if done well, carries uncertainty , inherently and by design.

Threat Detection 130

Threat Detection Information Security Cybersecurity 130

Anton on Security

MAY 15, 2023

Great blog posts are sometimes hard to find (especially on Medium ), so I decided to do a periodic list blog with my favorite posts of the past quarter or so. This covers both Anton on Security and my posts from Google Cloud blog , and our Cloud Security Podcast too ( subscribe ). Why Is Threat Detection Hard?”

Threat Detection 147

Threat Detection Cloud Migration Encryption CISO 147

Anton on Security

SEPTEMBER 27, 2024

Amazingly, Medium has fixed the stats so my blog/podcast quarterly is back to life. As before , this covers both Anton on Security and my posts from Google Cloud blog , and our Cloud Security Podcast ( subscribe ). Revisiting the Visibility Triad for 2020” “ Beware: Clown-grade SOCs Still Abound ” “Why is Threat Detection Hard?” “A

Cloud Migration 130

Cloud Migration Threat Detection Digital transformation CISO 130

Anton on Security

JULY 30, 2021

I’ve lamented on this a few times, either touching on general difficulties with detection , its uncertainty or highlighting the fragile detections people write. Related blog posts: “Modern Threat Detection at Google” (ep17) “Security Correlation Then and Now: A Sad Truth About SIEM” “What Are You NOT Detecting?” “Can

Threat Detection 130

Threat Detection Authentication Engineering Cybersecurity 130

Anton on Security

AUGUST 9, 2023

Great blog posts are sometimes hard to find (especially on Medium ), so I decided to do a periodic list blog with my favorite posts of the past quarter or so. This covers both Anton on Security and my posts from Google Cloud blog , and our Cloud Security Podcast too ( subscribe ). Why Is Threat Detection Hard?”

Threat Detection 130

Threat Detection Cloud Migration Encryption CISO 130

Cisco Security

MARCH 19, 2021

Accurate threat detection – reliability vs liability. Accurate threat detection is a difficult subject. Does the quantity of detections supersede the quality? More than one-third of the respondents were less likely to agree that their organization follows the practice of accurate threat detection.

Threat Detection 129

Threat Detection Data breaches Cybersecurity 129

CyberSecurity Insiders

MARCH 16, 2022

Google Cloud might think of delivering end-to-end security to its enterprise customers and so introduced Context-aware threat detection to its Chronicle platform. With the latest announcement Google is acknowledging all its IT Stack-related customer needs at one go”, says Chronicle in its latest blog post.

Threat Detection 127

Threat Detection Cyber threats Cryptocurrency Cybersecurity 127

Cisco Security

APRIL 16, 2024

With the proliferation of sophisticated cyber threats, businesses must adopt a multi-layered… Read more on Cisco Blogs Explore the synergy of Cisco's Duo Security & Identity Intelligence, bolstering cyber defense with advanced threat detection & response capabilities

Threat Detection 107

Threat Detection Cyber threats Cybersecurity 107

Heimadal Security

JANUARY 27, 2023

Threat detection and response (TDR) is an increasingly important approach to security as organizations struggle to keep up with the growing number of cyberattacks. TDR combines several technologies and processes to detect, analyze, and respond to malicious activity on networks, devices, applications, and more.

Threat Detection 98

Threat Detection Technology 98

Duo's Security Blog

NOVEMBER 20, 2023

On the proactive side, ITDR can detect policy misconfigurations, excessive privileges, and high-risk scenarios such as dormant or inactive accounts or accounts with MFA disabled. In the meantime, read this blog on How to Evaluate the Best Access Management Solutions.

Threat Detection 138

Threat Detection Authentication Accountability Data breaches 138

Anton on Security

FEBRUARY 10, 2023

Great blog posts are sometimes hard to find (especially on Medium ), so I decided to do a periodic list blog with my favorite posts of the past quarter or so. This covers both Anton on Security and my posts from Google Cloud blog , and our Cloud Security Podcast too ( subscribe ). Why Is Threat Detection Hard?”

Threat Detection 100

Threat Detection Cloud Migration Encryption CISO 100

Security Boulevard

NOVEMBER 20, 2023

In Operational Technology (OT), where the physical world converges with the digital, the demand for vigilant attention to threat detection and response is of the greatest significance. This blog will help […] The post Complete Guide to OT Threat Detection and Response appeared first on Security Boulevard.

Threat Detection 80

Threat Detection Technology Cybersecurity 80

Anton on Security

JUNE 23, 2022

Second, a hypothetical CDR tool will need to do its own threat detection, enable the analysts to triage alerts, support incident investigative workflows and probably do some response automation too. However, there are already tools that do all these things, but perhaps not all at once and not focused on the cloud.

Threat Detection 246

Threat Detection Marketing Technology 246

The Last Watchdog

OCTOBER 23, 2023

Splunk’s inability to migrate to a modern cloud-native architecture makes it difficult to take advantage of these cost-saving benefits or implement advanced data science use cases critical for threat detection. Impactful analysis A decoupled, purpose-built threat detection platform can work across distributed data lake architectures.

Architecture 261

Architecture Threat Detection Engineering Data collection 261

Security Boulevard

APRIL 25, 2025

Amazingly, Medium has fixed the stats so my blog/podcast quarterly is back to life. As before , this covers both Anton on Security and my posts from Google Cloud blog , and our Cloud Security Podcast ( subscribe ). A SOC Tried To Detect Threats in the Cloud You Wont Believe What HappenedNext Top 10 SIEM Log Sources in Real Life?

Threat Detection 52

Threat Detection CISO Cloud Migration Digital transformation 52

Security Boulevard

SEPTEMBER 26, 2024

Amazingly, Medium has fixed the stats so my blog/podcast quarterly is back to life. As before , this covers both Anton on Security and my posts from Google Cloud blog , and our Cloud Security Podcast ( subscribe ). Revisiting the Visibility Triad for 2020” “ Beware: Clown-grade SOCs Still Abound ” “Why is Threat Detection Hard?” “A

Cloud Migration 59

Cloud Migration Threat Detection CISO Digital transformation 59

Heimadal Security

MARCH 24, 2025

SOAR tools automate security workflows, enhancing threat detection, response speed, and efficiency while reducing manual effort. In this article, we’re going to present the best open-source tools on the market. In this article, we’re going to present the best open-source tools on the market.

Threat Detection 58

Threat Detection Marketing 58

Security Boulevard

JULY 22, 2024

This blog delves into 5 Ways Generative AI is Revolutionizing Cybersecurity Defense and how we protect digital assets. Emerging at the forefront of technological innovation, Generative AI is reshaping the landscape of cybersecurity defense with groundbreaking advancements.

Cybersecurity 124

Cybersecurity Threat Detection Technology 124

Webroot

FEBRUARY 3, 2025

In this blog, well explore why flexibility in EDR compatibility is becoming a critical advantage for MSPs, how it ties into SIEM analysis, and actionable steps MSPs can take when evaluating MDR providers. This comprehensive perspective enables faster identification of threats and vulnerabilities across the environment.

Threat Detection 82

Threat Detection Firewall Cybersecurity 82

Anton on Security

OCTOBER 20, 2022

Why Your Security Data Lake Project Will … Well, Actually … Long story why but I decided to revisit my 2018 blog titled “Why Your Security Data Lake Project Will FAIL!” That post was very fun to write and it continued to generate reactions over the years (like this one ).

Big data 202

Big data Threat Detection Software Technology 202

SecureWorld News

MARCH 17, 2025

To make sure you don't become the next headline on a cybersecurity blog, you should consider the following layered cybersecurity measures. AI-driven threat detection Implementing AI-driven threat detection allows your organization to analyze enormous volumes of data in real-time.

Cyber Attacks 112

Cyber Attacks Digital transformation Threat Detection Penetration Testing 112

The Last Watchdog

MARCH 4, 2025

To stay ahead of evolving threats, SOCs need two key AI-driven capabilities: Copilot AI Enhances analyst workflows with automated data analysis, report generation, and guided investigations. Agentic AI Delivers autonomous threat detection, investigation, and response, reducing manual workloads and accelerating decision-making.

Threat Detection 130

Threat Detection Cyber threats Media 130

Webroot

JANUARY 21, 2025

One of the most effective ways to do so is through round-the-clock threat hunting. In this blog, we’ll explore why constant threat hunting is essential, the challenges MSPs face in providing it, and how OpenText MDR can help overcome these challenges while offering SMBs the protection they need.

Threat Detection 97

Threat Detection Social Engineering Technology Cybersecurity 97

Anton on Security

SEPTEMBER 28, 2023

This blog series was written jointly with Amine Besson, Principal Cyber Engineer, Behemoth CyberDefence and one more anonymous collaborator. In this blog (#3 in the series), we will start to define and refine our detection engineering machinery to avoid the problems covered in Parts 1 and 2. Stay tuned!

Engineering 246

Engineering Education Government Threat Detection 246

The Last Watchdog

MAY 25, 2022

One tool picking up prominence is Extended Detection and Response (XDR.). XDR is one of the latest acronyms to hit the cyber dictionary, and it is a new approach to threat detection and response. One of the best ways to overcome this issue is through XDR technology, the next evolution in threat detection and response.

Digital transformation 222

Digital transformation Threat Detection Architecture Cybersecurity 222

Webroot

FEBRUARY 11, 2025

They gain the advantage of expert-led security teams that can leverage the full potential of the SIEM platform to deliver rapid, precise, and continuous threat detection. This continuous monitoring reduces the risk of attackers moving undetected, ensuring that threats are neutralized before they can cause harm.

Threat Detection 67

Threat Detection Technology Cyber threats Risk 67

Heimadal Security

OCTOBER 16, 2023

Threat Detection and Response (D&R) Solutions are an important part of the cybersecurity strategy, especially in the face of escalating cyber attacks. These security tools have seen significant evolution, adapting to more sophisticated threats over time.

Threat Detection 111

Threat Detection Cyber Attacks Cybersecurity 111

Cisco Security

APRIL 17, 2024

Cisco XDR is a leader in providing comprehensive threat detection and response across the entire attack surface.

Threat Detection 107

Threat Detection 107

The Last Watchdog

MAY 16, 2022

Threat detection. The TCU deploys AI-based runtime threat-detection surveillance and remediation for enhanced tamper •. TCU’s capabilities encompass a depth and breadth of systems analysis and cutting-edge security management that locates and contains attacks. Traceability and accountability.

Cyber Attacks 273

Cyber Attacks Firmware Artificial Intelligence Manufacturing 273

Cisco Security

DECEMBER 7, 2021

For example , Accurate Threat Detection was one of our top drivers , but what technologies, processes, and staffing models help achieve success in this arena ? What about insourcing or outsourcing threat management? . Figure 2: Effect of staffing models on perceived threat detection and incident response capabilities.

Threat Detection 145

Threat Detection Technology Cybersecurity CISO 145

Heimadal Security

SEPTEMBER 30, 2024

When it comes to threat detection, it’s important to get the right tools for the job. EDR and […] The post EDR vs. SIEM: Key Differences, Features, Functionality Gaps, and More appeared first on Heimdal Security Blog. SIEM: Key Differences, Features, Functionality Gaps, and More appeared first on Heimdal Security Blog.

Threat Detection 98

Threat Detection Marketing 98

eSecurity Planet

DECEMBER 4, 2024

David Weston, VP of enterprise and OS security, said in a blog post , “We are committed to ensuring that Windows remains the most reliable and resilient open platform for our customers.” This includes strengthening password policies, implementing multi-factor authentication, and leveraging advanced threat detection techniques.

Encryption 107

Encryption Phishing Passwords Authentication 107

Webroot

JANUARY 13, 2025

Heres why OpenText MDR is the ideal solution: 24/7/365 threat monitoring and response OpenText MDR provides constant vigilance, ensuring your customers are protected day and night. With advanced threat detection and remediation powered by SIEM and SOAR technology, it quickly spots and shuts down threats before they can do any damage.

Cybersecurity 102

Cybersecurity Cyber threats Artificial Intelligence Cybercrime 102

Adam Levin

OCTOBER 13, 2020

Based on the data we see through Microsoft Office 365 Advanced Threat Detection, Trickbot has been the most prolific malware operation using COVID-19 themed lures,” said Burt. . It is primarily spread via file attachments in email campaigns and is often used to infect computers and networks with ransomware.

Threat Detection 161

Threat Detection Malware Banking Ransomware 161

Heimadal Security

JANUARY 27, 2022

Heimdal™ Security’s threat hunting journal continues to bring you the latest in threat detection and malware prevalence. Just in case you’ve missed it, last month’s uncrowned malware king was the trojan with over 28,000 positive detections, spread across six strains. The post Heimdal™ Threat Hunting Journal: January E.O.M

Threat Detection 105

Threat Detection Malware 105

Anton on Security

MARCH 7, 2024

DR This is the blog where I really (briefly ) miss my analyst life and my “awesome+” peers like Augusto and Anna. And, yes, this blog was inspired by a hallways conversation at a conference that took place more than a year ago :-( So, the question: When and where do you need “<domain>DR” tool for its own technology domain?

Threat Detection 130

Threat Detection Technology IoT Marketing 130

Webroot

JANUARY 6, 2025

As threats increase, so does the need for comprehensive, reliable, and accessible protection. This is where managed detection and response (MDR) services come in. The post 6 reasons why SMBs love OpenText MDR appeared first on Webroot Blog. Ready to protect your business with comprehensive, around-the-clock security?

Cyber threats 99

Cyber threats Cyber Attacks Threat Detection Risk 99