Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
In June we have had new additions to our growing list of Machine-Learning-powered Confirmed Threat detections provided by the Cognitive Intelligence engine. Thanks to the improvement made to our Machine Learning backend (see Machine Learning Backend ...
We are excited to announce new additions to our growing list of Machine-Learning-powered Confirmed Threat detections provided by the Cognitive Intelligence engine. Thanks to the improvement made to our Machine Learning backend (see Machine Learning B...
Throughout March, April and May 2019 we improved Machine Learning backend infrastructures and processes to accelerate discovery of new Indicators of Compromise (IoC). Higher number of discovered IoCs has two benefits: 1. higher percentage of Cognitiv...
We have updated existing Cognitive Intelligence GUI to provide users with extended descriptions for Activities on the Incident Detail Page. Before this update, Activities - that the Incident consists of - had been presented only through their short n...
List of Activity types that - when observed in telemetry - lead to creation of Incident in Cognitive Intelligence.
Activities related to Confirmed Threat Categories (both on StealthWatch and ProxyLogs)
Note that each category covers up to dozens ...
The technologies are principally different and are intended to complement each other. ETA/StealthWatch provides the stronger detection capability, allowing to apply many of existing detectors that would normally work only with unencrypted data. HTTPS...
Detection from HTTPS telemetry without decryption currently works on proxy logs sent from WSA directly to CTA and on proxy logs sent from CWS to CTA. This technology does not need any special setup; all existing or future WSA or CWS customers have th...
