FAQ with Miles Brinkley from Darktrace

By | Security | No Comments

Miles Brinkley – Cyber Security Account Executive, Darktrace

A Darktrace FAQ with Miles Brinkley

Miles Brinkley travels extensively keeping very active engaging Cybersecurity professionals and C-Level executives in their data centers and as the headline speaker at countless cybersecurity speaking engagements.  We recently sat down with Miles and asked him to share the most frequent question he is asked about Darktrace.

Q: How do you avoid false positives? If you don’t use rules or signatures or outright determine what’s good or bad behavior in the network, how can I be sure you won’t just flag innocuous activity and disrupt me with harmless alerts all day?

A: This is a good question and one that I am often asked. Darktrace’s machine learning and AI avoids false positives on the principles of just that—it doesn’t actively “look” for anything good or bad, or use rules or signatures to predict what’s coming. It simply learns your network activity—every user, device, and IP—and determines what is anomalous as opposed to what is normal activity. In the beginning learning period of your network, you may experience a bit more “white noise”—small statistical deviations from normal and subsequent alerts, but this only lasts for a few weeks to a month at most. The machine learning will quickly learn your network and cluster like devices, servers, and IPs based on daily functions and traffic patterns, and will continue to grow and scale with the network. Thus, the white noise will quickly disappear, and all alerts you receive-big or small-will be worthy of investigation and substantive. It’s consistent with the enhanced visibility the AI provides into your network.

In the same way, the autonomous response (Antigena)’s AI intelligence will not affect or disrupt your network chasing white noise alerts. It is intelligent enough to only take action on items that cross a reasonably significant threshold score, which you can set and edit yourself within the UI.

About Darktrace: Darktrace is the world’s leading AI company for cyber defense. With thousands of customers worldwide, the Enterprise Immune System is relied on to detect and fight back against cyber-attacks in real-time. The self-learning AI protects the cloud, SaaS, corporate networks, IoT and industrial systems against cyber-threats and vulnerabilities, from insider threats and ransomware to stealthy and silent attacks. Darktrace has over 800 employees and 40 offices worldwide. It is headquartered in San Francisco, and Cambridge, UK.

Contact us to learn more about the free 30-day trial

In 95% of organizations, Darktrace finds genuine cyber-threats that others have missed, from insider threat to IoT hacks, malware and misconfigurations to data leakage and unusual behaviors.

During a 30-day trial, Darktrace software will discover what’s lurking inside your organization.

 1-hour installation by your dedicated Darktrace Cyber Technologist
 Rapid results
 Bespoke threat reports for executives
 No commitment

Fortinet Platinum Partner

Tips for Finding the Right Fortinet Partner

By | Security | No Comments

Have you struggled with how to go about finding the right network security partner? For as many cybersecurity services and solutions as there are out there, there are many more organizations willing to sell those cybersecurity services and solutions to you.  We have some tips to help you easily identify the best Fortinet service and solution providers for your cybersecurity needs. Read More

Fortinet earns TWO 2019 US SC Awards!

By | Security | No Comments

Fortinet earned the Best UTM Security Solution Trust Award AND the Best Security Company Excellence Award!

Fortinet has had a well-earned great week at #rsac2019! In addition to announcing the new FortiInsight UEBA solution, it was announced that Fortinet earned the Best UTM Security Solution Trust Award AND the Best Security Company Excellence Award! These are a few of the great honors that SC Media awards each year and an invaluable service they provide in highlighting cybersecurity brands making strides in protecting our organizations, customers and data. We are excited to see Fortinet and many of our other technology partners honored with these prestigious awards. Read More

Xiologix CTO Christopher Kusek Earns 2019 VMware vExpert Designation!

By | General | No Comments

Christopher Kusel Earns VMware vExpert Designation for 11th Consecutive year!

It is official – He is in! Christopher Kusek once again earns vExpert designation for the 11th consecutive year! VMware vExperts have demonstrated significant contributions to the community and a willingness to share their expertise with others. Congratulations Christopher!  

Read the Full Announcement Here.

Just when you thought the work was done … A Fortinet Success Story

By | Security | No Comments

Not long ago, our Xiologix CTO was working with a new manufacturing client. They initially worked with a different partner and brought us in to work with them on their security posture because the other partner left them still needing more in the manner of configuration, support, and they found some serious deficiencies in their deployment. Happy to work with the client, we got their environment cleaned up, and it laid the foundation for more success that layered on after that. Read More

Cybercriminals Use HTTPS Links to Gain Access to Your Data

By | Security | No Comments

Image Source: http://docs.apwg.org/reports/apwg_trends_report_q4_2017.pdf

According to Phishme research, 91% of attack-related data breaches begin with a spear phishing email.  Most of us have heard about phishing and know to stay away from unsafe sites but did you know that 80% of people polled by APWG believe that the HTTPS notation along with the padlock in the URL address means that the site is legitimate and/or safe to visit?

HTTPS (Hyper Text Transfer Protocol Secure) means that the communication between your browser and the website is encrypted. It does not imply that the site you are visiting is safe. If even one of your users believe HTTPS to mean that the site is safe to visit, your organization is susceptible to a data breach.

To mitigate this risk, we recommend multiple layers of protection including:

  • FortiMail which recently received Top AAA Rating in SE Labs Email Security Test demonstrating 100 percent detection of phishing attacks with zero false positives.
  • End-user testing and training which can start with a live phishing test, a custom phishing test template, a custom landing page, and a full report to give you a starting place in knowing your vulnerabilities.

Contact Xiologix to learn more.

Online Safety at Home

By | Security | No Comments

While internet usage in the home continues to grow, so does our need to learn, exercise and share internet safety. From posting on social media to using the latest internet-connected toy, it is imperative that everyone from children through older adults learn to use the internet and internet-connected items safely.

Here are a few tips to get those conversations started based on StaySafeOnline recommendations:

Keep a Clean Machine: Those pesky “updates” on our cell phones, PCs and other Internet-connected devices, are designed in part to help keep your devices free of viruses, malware, and other online threats. Don’t ignore them – many times they include patches to recently discovered vulnerabilities.

Lock Down Your Login: One does not need to look hard to find recent examples of large-scale password exposures. Improve account security by enabling robust authentication tools such as bio-metrics or one-time access codes. Let’s Talk About Passwords.

Read Between the Lines: Would you put up a sign on your front door saying, “Nobody is Home?” Of course not but that could be how a bad actor reads your real-time check-in or vacation photo. If you want to share your adventures, lock down who can see your posts or consider posting once you have returned.

Share with Care: Think carefully about what you are saying about yourself or others before you post. Choices can hurt feelings, betray trust or even come back to bite you in the future.

Back it up: Having a recent copy of your important files and photos can spare you from the ill-effects of device failure and #ransomware.

Protect Personal Information: Personal information is an asset that can be sold for money. Information such as your locations and purchasing habits and even search history is deemed valuable by an array of retailers. Did you know that Medical Records are more valuable on the black market than your credit card numbers?

Be Aware of Incognito Mode: Browsing Incognito can be a great way to ensure that your cookies and site data are not saved. However, parents beware, browsing incognito can allow your home users to visit sites without you being able to track their activity by looking at the browser history.

Avoid Falling for Tricks: From Phishing to Spoofing, bad actors can be very creative in tricking unsuspecting internet users to click on malware. Knowledge is power so keep yourself and your household familiar with how to recognize potential fraudulent attempts to get you to click. Be wary of communications asking you to click or enter private information. When in doubt, contact the organization directly by phone to confirm that the communication is legitimate and to report it if it is not.

Secure Your WiFi Router: Change your WiFi router’s default name in a way that does not let people identify that it’s yours. No using “WoodwardHomeWiFi”. Set a very strong passphrase for your WIFi network. Have fun with it keeping it positive and easy to remember and consider throwing in some numbers to substitute as letters such as “IL0V3THEB3ACH”.

Follow Xiologix for more #cybersecurity information as we participate in the 15th Annual National Cybersecurity Awareness Month and work year-round to help businesses of all sizes protect their digital infrastructure and data.  #cyberaware

Call Now Button