Orca Security, has added Cloud Detection and Response (CDR) capabilities to its agentless Cloud Security Platform to help organizations identify, investigate, and respond to current attacks.
The Orca Platform analyzes cloud provider logs and threat intelligence feeds using machine learning and rules-based heuristics, while also providing automated remediation to prevent security issues that develop throughout the software development lifecycle (SDLC).
The need for a new strategy to counter the rising cloud attacks is critical. According to IDC, in 2021, 98 percent of companies have experienced a cloud data breach in the past 18 months, up from 79 percent in 2020. Orca Security Cloud Detection & Response capabilities are uniquely designed to solve this challenge in by monitoring for dangers and threats across the entire surface of the cloud attack. By providing Security Operations Center (SOC) and Incident Response (IR) teams with contextualized data on potentially malicious events, security teams can expedite the investigation, testing, and response to threats. cloud.
Orca Security combines this information with its full contextual insights into cloud workloads and configurations to quickly identify threats that need immediate attention. By using anomaly detection based on cloud native applications combined with user activity, security teams can identify the threats that pose the greatest risk to applications and crown gem assets in order to fix them quickly and effectively from a single cloud security platform.
“With our new Cloud Detection and Response capabilities, we are greatly expanding the scope of the Orca Cloud Security Platform,” said Avi Shua, CEO and co-founder of Orca Security. “By using heuristics and anomaly detection capabilities that cover both workload and cloud native activity, organizations can, for the first time, have 100 percent agentless coverage against all cloud types. attack. “
A game changer for mitigating cloud attacks
Orca Security is the first agent-free platform that combines anomaly detection and heuristics to cover the entire cloud native application attack surface – including cloud configuration, workload, data, network, and identity layers – in one unified model data to understand the entire risk context and which events are likely to jeopardize the organization’s most important assets.
“Identifying and responding to threats in the cloud is a difficult challenge for any organization. At Paidy, we trust Orca Security today for key capabilities such as cloud vulnerability management and ongoing compliance,” Jeremy said. Turner, Deputy CISO and Senior Cloud Security Engineer at Paidy. “The added Cloud Detection and Response dashboard and capabilities strengthen the Orca Cloud Security Platform to continue scaling our cloud security efforts with Paidy.”
With Orca’s CDR capabilities, organizations can detect, investigate, and respond to attacks in the cloud:
- Detect: Orca constantly monitors vulnerabilities and incorrect configurations in the cloud, as well as malware, identity and access management (IAM) risks, side -scrolling risks, sensitive data exposure, and more. It also knows exactly when security teams should be alerted, and avoids over-alerting about less important issues, reducing alert stress, and potentially missed critical issues.
- Investigate: Security teams can research malicious activity using Orca’s new CDR dashboard to quickly understand if events indicate an attack and if any of the organization’s critical assets are at risk.
- Reply: Organizations can organize attacks in the cloud by using Orca’s automated measures to quickly prevent attacks efficiently. Orca also integrates with SIEM and SOAR solutions for rapid investigation and remediation (e.g., Splunk, Sumo Logic, IBM Qradar, Torq, and Bringa) and offers some ticket and notification integration to providers such as of Slack, PagerDuty, ServiceNow, and Jira.