With the DBIR App Developed for Splunk, Verizon Backs Enterprises for Cyber Threat Navigation

By CIOReview | Friday, September 18, 2015
746
1272
255

BASKING RIDGE, NJ: Verizon Enterprise Solutions, a division of Verizon Communications aids enterprises navigate and make sense of the increasingly sophisticated cyberthreat landscape through its new release Data Breach Investigations Report (DBIR) app for Splunk software.

Available for free, the app presumes cyber threats by harnessing the rich historical breach intelligence gathered by Verizon's data breach investigations team and makes it actionable with Splunk security analytics software.

The DBIR app designed for Splunk lets organizations to gain business insights and operational intelligence using analytics to correlate machine data and network traffic, proactively monitor and detect anomalies, create alerts, and quickly search and investigate threats with the support of Splunk software.

"Much like the DBIR, we are making this app available as a public service for the security community to help improve cyber intelligence," explains Mike Denning, Vice President,Global Security for Verizon Enterprise Solutions. "By coupling Verizon's in-depth, real-world breach data with Splunk's powerful data analysis software, our customers gain the actionable intelligence needed to advance their cybersecurity measures and better secure their data."

The application enables enterprises to use a variety of dashboard views offering specific recommendations for credentialing use, phishing and malware.Track authentication, detect credential-based lateral movement, log impossible journey VPN connection, flag potential exfiltration through email and identify vulnerable systems  are some of the major configurations incorporated in the app.

"The DBIR is an important report for the community, focusing on the trends of the modern threat landscape derived from analyzing thousands of real-world attacks. By working together, we have operationalized the insights from the DBIR for the community to allow organizations a greater level of visibility to address and prevent security risks," saysHaiyan Song, senior vice president, security markets, Splunk.