In August, the CyberSift team continued to build on the momentum from July by rolling out additional updates and enhancements to our cybersecurity solutions. These improvements are designed to further strengthen our offerings, ensuring that our customers remain protected against the evolving and increasingly sophisticated threat landscape. As we move through this busy month, we also want to acknowledge and celebrate the well-needed breaks of customers and employees alike and wish them a safe and secure season.
SIEM Updates:
In our ongoing efforts to optimize performance and improve user experience of our SIEM solution, several significant enhancements and new features have been introduced to CyberSift's NiFi processors.
Throughput Performance Enhancements: We've focused on boosting the throughput performance for our Syslog and Windows EventLog processors, two of the most heavily utilized components within the NiFi framework. These enhancements allow for more efficient data processing, significantly reducing latency and improving the overall system responsiveness.
“Early Stop” Option in JmesPathMatcher: A new "early stop" feature has been added to the JmesPathMatcher NiFi processor. This option is designed to halt processing once the desired condition is met, thereby improving performance in scenarios where further processing would be redundant. This can lead to substantial time savings, particularly in high-throughput environments.
Support for Multiple JSON Entries: NiFi processors now support multiple JSON entries in a single flowfile (multiline JSON):
JmesPathMatcher
PutElasticCS
SentinelOne Dashboard Log Retrieval: Updates have been made to the NiFi processor responsible for retrieving logs from the SentinelOne Dashboard. These updates enhance the reliability and speed of log ingestion, ensuring that security events are captured and processed more swiftly.
New NiFi Templates for Oracle Cloud WAF Ingestion: To support our users working with Oracle Cloud, new NiFi templates have been introduced specifically for Oracle Cloud Web Application Firewall (WAF) log ingestion.
For a detailed guide on setting up Oracle Cloud WAF ingestion using these new templates, please refer to our knowledge base explainer. This resource provides step-by-step instructions, ensuring a smooth and efficient setup process.
TUTELA Updates:
We've made significant strides in enhancing the accuracy of Windows OS version detection within our platform. This update ensures that our systems can more precisely identify the specific version of Windows running on a device, including various builds and updates that were previously challenging to distinguish.
MOBILE END-POINT SECURITY
Mobile phishing is one of the most effective ways for attackers to start a breach. Lookout found that 1 in 4 enterprise mobile users clicked on a mobile phishing link in 2023. With legitimate credentials, attackers can enter your infrastructure silently and move freely to access your most sensitive data.
CyberSift offers comprehensive mobile security for devices and apps, featuring advanced protection, ease of use, and strong employee privacy safeguards.
Comments