TMCnet News
Ziften joins Microsoft Community in Contributing to Windows Defender ATP Advanced Hunting Project - Targeting Growth in Fileless AttacksAUSTIN, Texas, June 5, 2018 /PRNewswire/ -- Ziften, a leading provider of all-the-time visibility and control for client devices, servers, and cloud VMs, today announced it has joined the Microsoft community in contributing to the Windows Defender Advanced Threat Protection (ATP) advanced hunting project. Even the best defenses can be breached, and security teams must find and investigate threats and breaches more quickly and aggressively. Ziften's contributions include analytics and queries so customers can easily conduct threat hunting to identify suspicious activities that indicate the presence of threat actors using advanced fileless attack techniques across Windows, macOS, Linux, and cross-platform systems environments. The Windows Defender ATP advanced hunting capability gives customers the tools to instantly hunt for threats and breaches across 6 months of endpoint behavioral and configuration data, and the advanced hunting community contributes threat hunting queries available directly within the Windows Defender ATP advanced hunting console and in the Github repository. Today's announcement builds on the news that Ziften's Zenith security platform is integrated with Windows Defender ATP delivering a cloud-based "single pane of glass" to detect, view, investigate, and respond to advanced cyber-attacks and breaches on Windows, macOS and Linux endpoints. Advanced Hunting Project Fileless attacks, also known as zero-footprint attacks, or non-malware attacks are on the rise – 77 percent of compromised attacks in 2017 were fileless.[1] The Microsoft advanced hunting project simplifies cyber threat hunting, or the process of proactively and iteratively searching through networks to detect and isolate these advanced threats. Ziften's participation in the advanced hunting community provides mutual customers:
"As a member of the Microsoft Intelligent Security Association, Ziften is excited to contribute our macOS, Linux, and cross-platform hunting expertise with the Microsoft advanced hunting community," said Josh Harriman, Vice President of Cyber Security Intelligence, Ziften. "Bringing together our deep macOS and Linux know-how, with Microsoft's Windows intelligence, and our customers' familiarity with their systems environments creates the best of all worlds for our mutual customers' security teams tasked with conducting threat hunting exercises. The easier and more automated we can make the hunting process, the more successful customers will be in finding and eliminating potential threats and risks." [1] "The 2017 State of Endpoint Security Risk Report", Ponemon Institute, November 20, 2017 About Ziften: Ziften Media Contact:
View original content with multimedia:http://www.prnewswire.com/news-releases/ziften-joins-microsoft-community-in-contributing-to-windows-defender-atp-advanced-hunting-project--targeting-growth-in-fileless-attacks-300656806.html SOURCE Ziften Technologies |