Check Point rolls out new security analytics solution

Check Point rolls out new security analytics solution
Photo Credit: Photo Credit:
14 Jun, 2019

Software firm Check Point has rolled out its new security analytics solution CloudGuard Log.ic which will deliver cloud-native threat protection and security intelligence.
The Israel-based firm said that the new solution lets customers see every data flow and audit trail in today’s elastic cloud environments, and make sense of cloud data and activities to expedite forensic investigation processes.

 “CloudGuard Log.ic provides our enterprise customers with powerful visibility and context into all activity within their cloud environment, combined with feeds that identify malicious intent or intrusion detection to prevent mega Gen V cybersecurity attacks,” said Itai Greenberg, vice president, product management and Marketing at Check Point Software Technologies.

A survey conducted by Cybersecurity Insiders for Check Point reported that the biggest operational cloud security headaches IT organisations struggle with are compliance (34%) and lack of visibility on infrastructure security (33%). 

While a majority of organisations say their cloud instances have not been hacked (54%), a significant 25% did not know whether they had been breached. Close to 15% of organisations confirmed they had experienced at least one cloud security incident, the survey added.

The company claims that the new solution can also be used by security and DevOps teams to expedite incident response and threat hunting, review security policies and enforce them across multiple accounts. CloudGuard Log.ic can also integrate with third-party SIEM (security information and event management) solutions, such as Splunk and ArcSight, it added.

Some of the key features the new solution offers is advanced threat prevention, easy creation of customised alerts, attribution assigned to users, reporting on significant events and cloudbots auto-remediation functions.

In May, the cybersecurity solutions provider had said that April saw the return of banking trojan trickbot on the global list of top 10 most wanted malware after almost two years. Trickbot was the month’s eighth most prevalent malware variant, returning with new capabilities, features and distribution vectors, the company said in a statement, adding that trickbot offer a high level of flexibility and customisation, which enables it to be distributed as a part of multi-purpose campaigns.