Story image

Secureworks opens up proprietary UEBA through partner programme

05 Sep 18

Cybersecurity company Secureworks announced that it will partner with other security solution providers to apply its Red Cloak behavioural analytics in their customers’ environments.

Secureworks’ decision to decouple its proprietary analytics offering from its endpoint agent will make the company’s high-fidelity detection and threat hunting capabilities available more broadly in the marketplace, while also giving clients the freedom to choose endpoint security products that best meet their needs.

Secureworks threat hunters and incident responders developed Red Cloak in 2010 when they were unable to find adequate tradecraft for analysing threat actor behaviour and intent.

The company has since deployed Red Cloak in response and hunting engagements around the globe and also applies the analytics as part of the company’s managed detection and response offerings.

With the launch of its Red Cloak Partner Program, Secureworks will engage in a more transparent exchange of raw data with participating vendors.

This collaboration will generate the necessary level of telemetry that Secureworks analysts require to apply Red Cloak behavioural analytics effectively and generate positive outcomes for the client.

When a partner’s solution is coupled with Secureworks telemetry and intelligence, clients can expect:

  • a comprehensive view of threat actor activity in their environment,
  • better context for validating and remediating threats,
  • new countermeasures as vendors share a broader range of threat detection and response data and
  • the option to conduct threat hunting searches

 “We are launching this program to foster more cooperation and transparency in the security market and help clients detect advanced threats,” says Secureworks president and CEO Michael Cote.

“The Red Cloak Partner programme enables Secureworks to apply its intelligence and threat hunting capabilities to the client’s choice of security tools.”

 “In the majority of incident response engagements, we discover that the organisation lacks enough visibility to accurately identify malicious activity,” says Secureworks chief threat intelligence officer Barry Hensley.

“Secureworks’ analytics engine leverages our understanding of threat behaviour to detect adversaries who are using complex techniques to elude an organisation’s security controls.

“When Red Cloak is deployed, clients can rapidly focus resources on the right priorities versus getting lost in a maze of forensics activity.”

Secureworks invests heavily in developing counter threat intelligence and platforms that provide earlier warning of hidden intruders.

What MSPs can learn from Datto’s Channel Ransomware Report
While there have been less high profile attacks making the headlines, the frequency of attacks is, in fact, increasing.
Cisco expands security capabilities of SD­-WAN portfolio
Until now, SD-­WAN solutions have forced IT to choose between application experience or security.
AlgoSec delivers native security management for Azure Firewall
AlgoSec’s new solution will allow a central management capability for Azure Firewall, Microsoft's new cloud-native firewall-as-a-service.
Kiwis losing $24.7mil to scam calls every year
The losses are almost five times higher compared to the same period last year, from reported losses alone.
How to configure your firewall for maximum effectiveness
ManageEngine offers some firewall best practices that can help security admins handle the conundrum of speed vs security.
Exclusive: Why Australian enterprises are prime targets for malware attacks
"Only 14% of Australian organisations are continuously training employees to spot cyber attacks."
Exclusive: Why botnets will swarm IoT devices
“What if these nodes were able to make autonomous decisions with minimal supervision, use their collective intelligence to solve problems?”
"Is this for real?" The reality of fraud against New Zealanders
Is this for real? More often than not these days it can be hard to tell, and it’s okay to be a bit suspicious, especially when it comes to fraud.