New Feature in AWS: Traffic Mirroring
Now security analysts are able to collect data fast and flexibly with a new feature. Traffic Mirroring in AWS has given an ability to transfer the traffic to a SIEM (like Splunk) and analyse it. This is targeted for cases when you need:
-to analyze the actual packets to perform a root-cause analysis on a performance issue,
-to reverse-engineer a sophisticated network attack
-to detect and stop insider abuse or compromised workloads.
Traffic Mirroring helps to filter users that display suspicious activities: try to access from outside, DDoS attack, scan or brute force directly in the AWS environment by optimizing time and reacting to threats faster.
Contact us to learn more about AWS security trainings for your teams and security monitoring service to protect your DBs.
Get the Help You Need
Cybersecurity is our core expertise. Let’s get in touch and you will learn more about how UnderDefense can benefit your organization
Next Readers
UnderDefense and Accedian Partner to Deliver Cyber Resiliency Suite
UnderDefense and Accedian Partner to Deliver Cyber Resiliency SuitePress Release: January 19, 2021 UnderDefense and Accedian announced the launch of a partnership product to provide businesses with a suite of cyber security services. The main aim of our team is to...
Risk-based cyber resiliency
Risk-based cyber resiliency Customer view: Guest blog by Michael Rezek, VP, Cybersecurity Strategy at AccedianIt’s may be possible to spend less on cybersecurity and get more protectionWhat we have witnessed over the last couple of decades as the traditional approach...
Detecting reconnaissance activity in your network
Detecting reconnaissance activity in your networkBy Bogdan VennykOne of the main services we provide at UnderDefense is 24x7 Monitoring with our Security Operation Center (SOC) and a critical part of great SOC is ..., RIGHT! - its detection capabilities. That is why...