CS Mapper

Main Menu

  • Home
  • Mapping data
  • Mapping framework
  • Google maps
  • Geo data
  • IT project funding

CS Mapper

Header Banner

CS Mapper

  • Home
  • Mapping data
  • Mapping framework
  • Google maps
  • Geo data
  • IT project funding
Mapping framework
Home›Mapping framework›Launched Qualys Context XDR to quickly identify threats

Launched Qualys Context XDR to quickly identify threats

By Lewis Dunn
February 11, 2022
0
0

Qualys has unveiled Qualys Context XDR, the context-aware XDR powered by the highly scalable Qualys Cloud Platform.

The solution combines asset inventory and vulnerability context, network and endpoint telemetry from Qualys sensors, and high-quality threat intelligence and third-party log data to quickly identify threats and reduce alert fatigue, the company says.

Current SIEM and XDR solutions passively and reactively collect disparate and unrelated logs, creating an avalanche of notifications that places the burden of correlation and prioritization on the analyst, says Qualys.

Incident response and threat hunting teams need an accurate and complete picture of their attack surface to maintain an effective security, risk and compliance program.

Enterprise Security Group Principal Analyst Dave Gruber says, “The complexity and diversity of attack surfaces require security teams to implement risk assessment strategies that help focus their limited resources on critical assets most vulnerable to attack.

“Building on a single agent, the Qualys platform combines security risk position data with native endpoint telemetry and threat intelligence to align threat investigation and response activities with the most critical assets.”

Qualys Context XDR provides the security context operations teams need to eliminate false positives and noise by triangulating risk posture, asset criticality, and threat intelligence, the company says.

Together, this provides visibility, contextual priority, and meaningful asset insights that enable teams to quickly make more impactful decisions for enhanced protection.

For example, a vulnerability actively exploited by malware on a highly sensitive executive computer or server poses a higher level of risk to the business than a system in a test environment and requires an immediate response.

The Qualys Cloud platform, which processes more than 9 trillion data points, collects IT, security, and compliance telemetry using its multiple native sensors as well as third-party logs to provide a broader view of global networks of organizations.

Qualys Context XDR leverages this intelligence and the platforms’ cloud agent response capabilities – such as patching, fixing misconfigurations, killing processes and network connections, and quarantining hosts to comprehensively remediate identified threats and increase the productivity of time-pressed security analysts.

Qualys Context XDR uses more than just logs to provide context clarity by bringing together:

Risk position: Solution leverages comprehensive vulnerability, threat, and exploit information to natively correlate OS and third-party applications, including misconfiguration/end-of-life (EOL) detection for continuous vulnerability mapping .

Asset criticality: Leveraging the Qualys Cloud Platform, active asset discovery is combined with dynamic, policy-based criticality assignments to provide the security and business context needed to prioritize high-value assets in real time.

Threat Intelligence: In-depth understanding of exploits, attack techniques mapped against the MITER ATT$CK framework, and vulnerabilities used for defense penetration provides pre-emptive and reactive response capabilities to stop active attacks, address the root cause and remediate to prevent future attacks.

Third party data: Using the cloud-based Qualys agent and on-premises sensors, Context XDR collects up-to-the-second logging and telemetry data from your company’s third-party solutions and triangulates it with the risk position of assets , criticality, and threat intelligence to detect threats and create high-fidelity alerts.

Sumedh Thakar, President and CEO of Qualys, said, “Cybersecurity is becoming increasingly complex – with software supply chain attacks like Kayesa, ransomware attacks like Colonial Pipeline, and widespread severe vulnerabilities like Apache Log4j – providing threat actors with multiple avenues of access to organizations’ IT infrastructure.

“Qualys Context XDR is designed to simplify this complexity by detecting threats, prioritizing alerts with full context, and responding quickly with multiple response actions.”

Related posts:

  1. Scarborough committee examines utility-wide solar ordinance
  2. Environmental scan puts the gift of marble swamps at your fingertips
  3. Why Scientists Worried About Leaks at Biolabs
  4. OP-ED: Budget 2021-2022 – Questions to be resolved

Categories

  • Geo data
  • Google maps
  • IT project funding
  • Mapping data
  • Mapping framework

Recent Posts

  • Snr Java Developer (JHB) at Datafin Recruitment
  • 8 Outdoor Durian Stalls In S’pore With Decent Google Reviews To Sit And Enjoy The Fruit – Mothership.SG
  • DWP Launches Dashboard Availability Point Consultation
  • Woolworths leak says it uses artificial intelligence and facial recognition
  • Global industry analysts forecast the global autonomous data platform market to reach $2.8 billion by 2026

Archives

  • June 2022
  • May 2022
  • April 2022
  • March 2022
  • February 2022
  • January 2022
  • December 2021
  • November 2021
  • October 2021
  • September 2021
  • August 2021
  • July 2021
  • June 2021
  • May 2021
  • April 2021
  • August 2019
  • Privacy Policy
  • Terms and Conditions