LogRhythm enhances security analytics

New platform features and integrations enable analysts to quickly detect and remediate threats.

LogRhythm has introduced a series of expanded capabilities and integrations for its security operations solutions. The updates propel LogRhythm’s ability to be a much-needed force multiplier for overwhelmed security teams who are expected to confidently, effectively, and efficiently defend against cyberattacks.

Following the October launch of LogRhythm Axon, a groundbreaking, cloud-native security operations platform, the company is introducing new visualizations and powerful analytics that offer seamless visibility into potential security risks. Designed to streamline the experience of security analysts, Axon and its latest updates make it easier for teams to detect, investigate, and report on potential threats, reducing the burden of managing threats and the operating infrastructure.

“On a daily basis, we strive to empower lean and overburdened security teams with the most intuitive experience and contextual analytics,” said Chris O’Malley, CEO of LogRhythm. “By continuously working to fulfill that mission and deliver innovation that matters to customers every quarter, we are delivering on our promise of helping customers quickly reduce noise and secure their environment so that they can concentrate on safely competing in the digital age where fast beats slow.”

“Axon has already given our team the tools to effectively analyze our environment and improve our security posture,” said Eric L., Network Engineer at global manufacturing company. “Data collection and correlation to detect threats and respond can be time consuming. Axon gives us an intuitive interface to perform complex searches on data to filter in what really matters. We cannot wait to use the powerful analytics tools that will quickly surface threats.”

This quarter’s enhancements span LogRhythm’s product portfolio to collectively enable SOC teams to detect and resolve threats more easily, improving analyst productivity and effectiveness. Additional enhancements and integrations with LogRhythm’s Axon, SIEM, NDR, and UEBA solutions released in this quarterly rollout include:

LogRhythm Axon

New custom and out-of-the box analytics rules, including rules for MITRE ATT&CK detections

New markdown widget and histogram widget cuts down on time spent searching for data

Easily investigate log observations raised by analytics through the Observation Workflow

LogRhythm SIEM

Improved administrative workflow for collection shortens time to configure, deploy, and manage log sources that require Open Collector

Enhanced audit logging makes it easier to monitor suspicious activity and track when users make important changes

Updated and expanded LogRhythm’s library of supported log sources

LogRhythm UEBA

New detection models for Windows systems to quickly uncover hard to detect threats

LogRhythm NDR

Improved blind spot detection and endpoint visibility through integration with Microsoft EDR

Easily ingest data from VirusTotal with new configuration page

Improved analyst experience with expanded UI improvements

“This quarter, we are especially excited about the number of groundbreaking and enhanced capabilities coming to our market-leading solutions,” said Kish Dill, Chief Product and Customer Officer of LogRhythm. “These enhancements and integrations have been curated with the goal of simplifying the lives of security analysts and enabling them to detect threats faster through seamless visibility, enhanced collection, and an intuitive analyst experience.”

The industry’s 'most comprehensive' as-a-Service and multicloud portfolio helps companies better manage their data and applications wherever they live.
Hornetsecurity’s 365 Permission Manager delivers effortless permissions management for Microsoft 365.
ThreatQ Platform and ThreatQ Investigations allow Thales to pioneer market-leading personalised threat intelligence services.
Turkey’s leading integrated telecommunication operator, Türk Telekom, has deployed A10 Thunder TPS® from A10 Networks to deliver DDoS protection services for its business customers. The service is protecting critical infrastructure from DDoS attacks, enhancing service access reliability for subscribers using on-premises DDoS protection solution from A10 Networks.
Modern cloud solutions are supporting delivery of these use cases, while also helping financial organisations improve regulatory compliance, reduce costs, drive business outcomes, and cut down on technical debt.
Barracuda Networks research finds 24% of organisations studied had at least one email account compromised through account takeover.
ForgeRock has launched a new partner programme that now provides a comprehensive set of benefits that will drive growth and help ForgeRock partners deliver remarkable customer experiences. To lead the new programme, ForgeRock has hired Chris Westfall as Vice President of Global Partner Strategy, Programmes and Operations, who brings expertise from over 20 years of partner ecosystem leadership across the software industry.
Palo Alto Networks has published a study revealing that 50% of UK CEOs at large organisations (500+ employees) agree that cybersecurity is a bigger risk to their organisation than economic uncertainty. Furthermore, 51% of CEOs agreed that as cyber risks increase rapidly their ability to insure their organisation against a successful attack keeps them awake at night.