Corr-Serve salutes Azure inclusion of ExtraHop Reveal(x)
Johannesburg, South Africa – 15 November 2018 –
Threat detection and investigation across cloud infrastructure is a challenge for any enterprise-grade security operations centre (SOC).
With the recent announcement that ExtraHop® Reveal(x)™ is now available in Microsoft Azure Marketplace, visibility SOC teams can be extended from the data centre to the branch office to the cloud, and across all remote site deployments.
Corr-Serve, authorized distributor of ExtraHop Reveal(x), welcomed the addition for South African clients an enterprise-grade network traffic analysis (NTA) solution that delivers threat detection and investigation purpose-built for the cloud.
“By integrating with Azure, customers can finally extend the visibility and response capabilities of their enterprise security operations centre to encompass cloud infrastructure,” said Wade Gomes, Sales Director of Corr-Serve. “Because Reveal(x) automatically discovers and classifies everything traversing the Azure environment, including rogue compute instances, it can deliver complete real-time visibility at cloud scale.”
That data, Gomes explains, is correlated with event data from Azure Security Centre to create a unified analytics and investigation source for SOC teams that provides “always-on, always-everywhere visibility” across the hybrid attack surface.
The Reveal(x) NTA platform integrates with the Microsoft Azure Virtual Network Tap to analyze cloud-based application payloads at scale. ExtraHop has partnered with Microsoft Azure to natively integrate Reveal(x) with the Azure Virtual Network Tap to deliver a completely passive, agentless approach to network traffic analysis in the cloud.
With the introduction of Reveal(x) for Microsoft Azure, enterprises can effectively address shared responsibility models and prioritize use of security resources based on critical assets and risk, delivering complete visibility across each dimension of enterprise responsibility including:
Applications & Content: Integration with Azure Security Centre events enriches network-based threat detection with system-level activity (disabled logging, suspicious processes, suspect file execution), while real-time TLS 1.3 decode and transaction payload analysis spots threats and evaluates risk, even within PFS deployments.
Inventory & Configuration: Automatic discovery and classification of all cloud assets gives cloud and security teams up-to-the-second understanding of the attack surface, including the ability to track rogue instances – even when logging is disabled - and instantly flag exposed resources.
Data Access: Full support for Azure SQL Database and Azure Blob Storage protocols means visibility into behaviour, not just activity, while machine learning at the application layer provides immediate detection of exfiltration activity.
Identity & Access Management: Integration with Azure Activity Monitoring allows granular tracking of privilege manipulation, while analysis and machine learning performed on Microsoft Active Directory payloads surfaces and flags suspicious behaviour like credential harvesting and brute force login attempts.
Corr-Serve selects Cloud4Wi to make smarter WiFi offering in SA
Johannesburg, South Africa – 09 November 2018 –
Corr-Serve, authorized distributor of select IT performance monitoring and operations management products in southern Africa, today announced the addition of Cloud4Wi to its portfolio of offerings. US-based Cloud4Wi, is a leading provider of location analytics and marketing solutions.
With the increase in advanced technology driving IoT, big data, and augmented reality, there’s a need to have ‘smarter’ areas, across retail, hospitality, transportation, public safety, education and healthcare to name a few. Offering public WiFi that can provide analytics and marketing helps create new possibilities, not just to improve the livelihood of citizens and visitors,” says Wade Gomes, Sales Director of Corr-Serve.
Cloud4Wi offers an AI-driven product suite for location analytics and marketing services. With Cloud4Wi, enterprises can collect customer insights through their guest WiFi services or their mobile loyalty app – and predict behaviour patterns. Empowered with this in-depth knowledge of who customers are and how they behave, businesses can then reach customers individually and in real-time via text messages, emails or push notifications. For enterprises looking to augment proximity and location information, Cloud4Wi provides a WiFi/Bluetooth USB device.
In May 2018, Cloud4Wi was named as a Gartner Cool Vendor in Location Services and Applications.
"The world's best-known brands rely on Cloud4Wi to drive their digital transformation," said Gomes. “Having a local presence will provide cutting-edge location services applications that bridge the online/offline divide and integrate this with real-time monitoring systems.”