APPLICATION INFRASTRUCTURE, DATA STORAGE, IT SYSTEMS MANAGEMENT

IronNet Launches IronRadar to Automatically Block Adversary Infrastructure

IronNet, Inc. | September 30, 2022 | Read time : 02:50 min

IronNet, Inc.
IronNet, Inc., an innovative leader Transforming Cybersecurity Through Collective DefenseSM, has launched IronRadarSM, a new solution designed to proactively and automatically update customers’ cybersecurity tools with malicious indicators for adversary infrastructure.

Developed by IronNet’s team of elite threat hunters, IronRadar uses an innovative process that fingerprints a server and determines whether it is a command and control (C2) server while those servers are being stood up, even before a cyber attack is initiated. IronRadar enriches the data creating purpose-built intelligence updates for proactively blocking adversarial infrastructure, and was observed to have 98% accuracy over six months of testing.

“We know that Cobalt Strike and other open-source tools provide the framework for legitimate ‘red team’ activities. “Unfortunately, open-source tools are being used by advanced persistent threat groups to gain access to systems, establish C2, and launch attacks. Thanks to our innovative and dedicated CyOC team, IronRadar can identify threats as new adversarial infrastructure servers appear and before they can be used in sophisticated cyber attacks.”

Don Closser, Chief Product Officer of IronNet

IronRadar is now available for all networks beyond the IronNet Collective DefenseSM platform community as an annual subscription – sold directly from the Amazon Web Services (AWS) Marketplace makes it cost effective and easy to buy and scale. Once installed, customers can easily upgrade to join the Collective Defense community at any time.

“Detecting weaponized C2 servers before they connect to a network and inflict damage like ransomware and eCrimes is a daunting challenge for all organizations,” said Christopher Kissel, Research Vice President of Security and Trust Products, at IDC. “The launch of the purpose-built threat intelligence feed from IronNet is a game changer because it proactively blocks known, new, and unreported C2 infrastructures.”

IronRadar is the only existing automated threat intelligence feed developed specifically to combat C2 behavior. This easy-to-use tool enables a customer’s SOC to:

  • Actively block known C2 and emerging threat C2 IoCs.
  • Integrate real-time threat intelligence into any security solution – SIEM, SOAR, Incident Response, and more.
  • Accelerate threat response by exposing the adversaries and evolving tradecraft targeting infrastructure.

IronRadar integrates seamlessly with the IronNet Collective Defense platform, powered by AWS, which is the only solution that can identify anomalous behaviors and deliver actionable attack intelligence to all the other participants in the IronNet community. The Collective Defense platform serves as an early warning system for all participating companies and organizations, strengthening network security through correlated alerts, automated triage, and extended hunt support.

About IronNet, Inc.
Founded in 2014 by GEN Keith Alexander, IronNet, Inc. is a global cybersecurity leader that is transforming how organizations secure their networks by delivering the first-ever Collective Defense platform operating at scale. Employing a number of former NSA cybersecurity operators with offensive and defensive cyber experience, IronNet integrates deep tradecraft knowledge into its industry-leading products to solve the most challenging cyber problems facing the world today.

Spotlight

Enterprises are investing $124 billion annually in cyber defense technologies: firewalls, intrusion detection systems, endpoint detection systems, and more. Most have a security operations center and SIEM platform to further fortify the castle. Yet, despite Herculean efforts, the bad guys are still getting in.

Spotlight

Enterprises are investing $124 billion annually in cyber defense technologies: firewalls, intrusion detection systems, endpoint detection systems, and more. Most have a security operations center and SIEM platform to further fortify the castle. Yet, despite Herculean efforts, the bad guys are still getting in.

Related News

HYPER-CONVERGED INFRASTRUCTURE, APPLICATION INFRASTRUCTURE

Run:ai announces the first Hybrid Cloud software solution to orchestrate AI workloads

Run:ai | September 01, 2022

Run:ai, the leader in compute orchestration for AI workloads, today announced that their Atlas Platform is the first to support hybrid cloud and multi-cloud AI Infrastructure. Run:ai's centralized monitoring and control panel provides a unified and consistent user experience to manage resources running on different locations including on-prem and in the cloud. With Run:ai, organizations can easily take advantage of adopting a multi-cloud strategy avoiding unplanned downtime, boosting compute availability, and controlling costs. "Using several cloud service providers or a combination of on-prem and cloud to manage infrastructure is the goal for most organizations but the challenges can be daunting. "Companies can underestimate the time and effort it takes to abstract infrastructure and migrate workloads to different clouds. Provider lock-in happens early and it can take months to train IT and DevOps teams on every environment. The lack of centralized monitoring also means that users must work with different tools to manage multiple clusters across multiple clouds - which differing price models further complicate." Ronen Dar, co-founder and CTO of Run:ai Run:ai's Atlas now provides a unified user experience through full abstraction so researchers can keep using each cloud provider's managed Kubernetes platform and leverage the best of every CSP's offering. Researchers can keep using their framework of choice and favorite development tools. Run:ai's Control Plane is a single pane of glass, with centralized & multi-tenant management of resources, utilization, health and performance across any aspect of the AI pipeline, no matter where the workloads are run. Run:ai also removes GPU configuration limitations, allowing teams to split GPUs into fractions for smaller inference workloads. Many organizations are also seeking a hybrid cloud architecture to keep their most sensitive data on-prem - where costs might be lower and performance better - while still leveraging the benefits of the cloud, such as availability and scalability. "With Run:ai, an AI healthcare company training models, for example, can keep their sensitive patient data on-prem, and once the model is trained, they can seamlessly move to the cloud to deploy to a customer." added Dar "Run:ai helps companies transition easily to a hybrid-cloud strategy and get the best of both worlds." About Run:ai Run:ai's Atlas Platform brings cloud-like simplicity to AI resource management - providing researchers with on-demand access to pooled resources for any AI workload. An innovative cloud-native operating system - which includes a workload-aware scheduler and an abstraction layer - helps IT simplify AI implementation, increase team productivity, and gain full utilization of expensive GPUs. Using Run:ai, companies streamline development, management, and scaling of AI applications across any infrastructure, including on-premises, edge and cloud.

Read More

HYPER-CONVERGED INFRASTRUCTURE, APPLICATION INFRASTRUCTURE

Service Express Acquires Third-Party Data Center Maintenance Provider Sherlock Services

Service Express | September 13, 2022

Service Express, a leader in global data center and infrastructure solutions, today announced the acquisition of third-party maintenance (TPM) provider Sherlock Services based in Ohio. The acquisition complements Service Express' current third-party maintenance offerings and brings expanded data center solutions to existing Sherlock Services customers. Founded in 1991, Sherlock Services provides multivendor data center maintenance and hardware solutions for server, storage and network systems. In addition to over 30 years of industry experience, the company brings a talented team of US-based Level 2 and Level 3 Engineers to Service Express. "We've offered similar solutions and worked alongside Service Express for many years and have been impressed with the level of service the company provides," said Ron Pollard, Co-Owner and President of Sherlock Services. "We look forward to offering our customers a widened portfolio of services and end-to-end data center support." The acquisition of Sherlock Services strengthens Service Express' technical team, brings additional OEM expertise and builds upon the company's comprehensive third-party maintenance offerings. "Our primary goal throughout the acquisition is to ensure our people have the resources they need to develop skills and explore potential career opportunities. "We anticipate a seamless transition and look forward to what's next with Service Express." Greg Brumbaugh, Co-Owner & VP Operations of Sherlock Services Data center solutions delivered by Service Express offer Sherlock Services customers new options for their day-to-day needs beyond third-party support, including Hybrid Cloud and Managed Infrastructure solutions. Service Express continues to expand its offerings to provide customers with one source for end-to-end data center and infrastructure needs. "Sherlock Services has great reputation, and they serve their customers and employees well – making them a great fit for Service Express," said Ron Alvesteffer, President and CEO of Service Express. "We're thrilled to welcome Sherlock Services' skilled team to Service Express and offer the company's existing customers more depth and expertise for their data center!" About Service Express Service Express is an industry-leading data center solutions provider specializing in global multivendor maintenance, hybrid cloud, managed infrastructure services, hardware solutions and more. Companies around the globe trust Service Express to deliver reliable end-to-end support. Service Express' flagship technology, ExpressConnect®, helps IT teams automate support with monitoring, ticketing, integrations and account management. For more information, visit serviceexpress.com. About Sherlock Services Sherlock Services is a data center solutions provider specializing in multivendor third-party maintenance (TPM) and hardware for server, storage and network systems. Since 1991, Sherlock Services has delivered data center support for its global customers. The company resolves hardware failures quickly and cost-effectively with local technicians and onsite parts.

Read More

APPLICATION INFRASTRUCTURE

Fastly Launches “Fast Forward” Initiative to Support Open Source and Internet Infrastructure

Fastly | November 10, 2022

Fastly, Inc., the world’s fastest global edge cloud platform, today announced the relaunch of its industry-leading Open Source and Nonprofit Program as “Fast Forward,” with a renewed focus on building community among the builders and maintainers of an internet that is faster, safer, and more inclusive. The announcement was made at Altitude, Fastly’s annual flagship customer conference. Fast Forward is a set of broad-reaching programs designed to empower and support open source projects, nonprofit organizations, and developers in their endeavors to build great things with unmatched ease, performance, and security. Extending Fastly’s deep commitment to open source, Fast Forward will offer free services to open source projects and the nonprofits that support them. Fast Forward will also establish and foster a community of these stakeholders so they can interact with and learn from one another, as well as with the broader developer and open source community. Fast Forward stems from Fastly’s mission to help make the internet a better place, where all experiences are fast, engaging, and safe. At its core, Fastly is driven to be part of an industry that is open, transparent and collaborative – working together to expand and preserve resilience, portability, and interoperability. Fastly believes companies that operate at a global scale are responsible for contributing their expertise to the communal body of knowledge which makes up the open internet: standards, protocols, open source technology, and policies. “Providing Fastly’s best in class services to open source projects and standards initiatives has the power to drive our shared mission of making the internet a better place, It’s important for us to support the organizations that fuel Internet innovation” -Fastly CEO Todd Nightingale Fast Forward is just one element of Fastly’s rich heritage in open source and open standards: Fastly is a founding member of the Bytecode Alliance along with Red Hat, Mozilla, and Intel; works alongside industry partners such as Microsoft, Google, and Apple and more to contribute to Private Access Tokens; and encourages its employees to contribute to open source through projects like Pushpin, WAF Efficacy, and more – just to name a few initiatives. Fastly also has a long-standing policy for its customer community, and only works with customers and partners who reflect Fastly’s values. There’s so much great creativity on the internet that’s inspiring but doesn’t always have the support it deserves, Fast Forward is Fastly’s commitment to helping everyone build a better internet. From open source technologies, to the fundamental protocols and standards that make the internet go, we’re telling every developer and every creator that we’ve got their backs, no matter what technologies, tools or stacks they use. We can’t wait to see how they use that potential to build and scale an even better internet,said Anil Dash, VP of Developer Experience at Fastly. Fastly’s investment in open source has provided valuable support to organizations like the Rust Software Foundation, the Apache Software Foundation, and the Scratch Foundation. Their leaders talk about the benefits they get from Fastly’s Fast Forward Program: Joel Marcey, Director of Operations and Advocacy at the Rust Foundation, said, As a non-profit organization supporting the Rust Project, the Rust Foundation believes the future of software development is looking brighter every day thanks to Rust's inherent benefits such as memory safety, energy efficiency, and scalability. But for the Rust Project to meet the demands of its growing popularity, diversified and cost-effective infrastructure is critical. The Rust Foundation is grateful to be included in the Fast Forward program, which will allow the Rust Project to harness Fastly's full-site delivery and powerful Compute@Edge platform at no cost. It's partnerships like these that will contribute to the growth and sustainability of Rust into the future. Daniel Gruno, Infrastructure Architect at the Apache Foundation, said, Fastly's sponsorship allowed The Apache Software Foundation to replace a complicated mirror infrastructure with a simple content delivery network (CDN) that is largely transparent to our projects and users. In addition, it's allowed the Infrastructure team to spend less time on our distribution network and more time on higher value projects for the foundation. Colby Gutierrez-Kraybill, Principal Software Engineer at Scratch Foundation, said, Thanks to Fastly's global reach and ongoing support, we are able to fulfill our mission at the Scratch Foundation of providing young people all over the world with digital tools and opportunities to imagine, create, share, and learn. We are grateful for Fastly's partnership, allowing us to stay flexible and agile as our platforms Scratch and ScratchJr grow globally as leading creative learning tools. To qualify for free services through the Fast Forward Program, members must freely distribute their codebase and align with Fastly’s open source values: open, community oriented, inclusive, friendly to new contributors, and built on trust. If accepted, they in turn commit to sharing knowledge and resources with the Fast Forward community and beyond. About Fastly Fastly’s powerful and programmable edge cloud platform helps the world’s top brands deliver the fastest online experiences possible, while improving site performance, enhancing security, and empowering innovation at global scale. With world-class support that achieves 95%+ average annual customer satisfaction ratings, Fastly’s beloved suite of edge compute, delivery, and security offerings has been recognized as a leader by industry analysts such as IDC, Forrester and Gartner. Compared to legacy providers, Fastly’s powerful and modern network architecture is the fastest on the planet, empowering developers to deliver secure websites and apps at global scale with rapid time-to-market and industry-leading cost savings. Thousands of the world’s most prominent organizations trust Fastly to help them upgrade the internet experience, including Reddit, Pinterest, Stripe, Neiman Marcus, The New York Times, Epic Games, and GitHub.

Read More