Stop the cyber attackers! Corvil and Carbon Black partner to provide accelerated threat detection

Integration of Carbon Black Endpoint Security Platform with Corvil’s Security Analytics Creates More Accurate, Efficient, and Comprehensive Protection for Security Teams

Real-time data analytics provider Corvil has today announced it has partnered with Carbon Black, the leader in Next-Generation Endpoint Security (NGES), to arm customers with unified cyber-threat detection, analysis, and response to thwart cyber attacks.

The combined solution provides new levels of visibility and context, empowering security teams to seamlessly track and correlate activity across their networks and endpoints. This enhanced visibility helps security teams accelerate detection and response times and streamline forensic investigations.

With this partnership, Corvil’s Security Analytics, leveraging high-performance deep packet inspection, integrates with Cb Response. The combination equips businesses to detect malicious activity in real time, as well as track and disable attacks with greater accuracy.

The Corvil and Carbon Black integration also enables customers to rapidly prioritize alerts, reducing the overhead from false positives and manual investigations. By correlating malicious traffic and cross-device user activity with originating processes and specific files accessed – both in real-time and retrospectively – security teams can more rapidly identify and investigate threats.

As a result of this solution, customers see enhanced value from their existing threat intelligence sources and have the ability to track both Indicators of Compromise (IoCs), and Patterns of Attack (PoAs) seen across the network and endpoints.

“Many companies, including the world’s leading financial services firms, rely on Corvil’s real-time technology to safeguard their critical businesses,” said Tom Barsi, senior vice president of business development for Carbon Black. “This integration enables customers to extend the visibility and protections of Corvil’s network-based Security Analytics to the endpoint with Carbon Black. By integrating our similar capabilities across network and endpoint, security teams have a more powerful and flexible solution at their disposal to detect and combat a broad array of internal and external cyber threats.”

Corvil’s live Security Analytics solution enables customers to identify markers often seen in advanced malware and ransomware, such as command and control and remote encryption traffic. Integration with Carbon Black’s “Live Response” empowers teams to automatically quarantine a host for greater protection.

By correlating Carbon Black’s endpoint data with Corvil’s full-fidelity, retrospective packet capture, the unified solution enables security teams to answer critical questions such as:

· “How long have the attackers been in our network?”
· “What sensitive data and credentials have been exfiltrated?”
· “Which command-and-control servers are communicating with our compromised systems?”
· “Which mobile and uninstrumented hosts are accessing which resources?”

“As the leader in next-generation endpoint security, Carbon Black provides thousands of organizations with a strong, comprehensive defense against cyber attacks,” said David Murray, chief business development officer at Corvil. “By combining that strength with the highly granular visibility and adaptive context enrichment from Corvil’s Security Analytics, we are, together, able to provide a reinforced picture of malicious activity and more effective, and efficient cyber threat protection for organizations.”