Corvil and Carbon Black Partner to Provide Accelerated Threat Detection

Integration of Carbon Black Endpoint Security Platform with Corvil’s Security Analytics Creates More Accurate, Efficient, and Comprehensive Protection for Security Teams

DUBLIN, IRELAND – September 13, 2016 - Corvil, the leader in real-time data analytics to safeguard critical business, today announced it has partnered with Carbon Black, the leader in Next-Generation Endpoint Security (NGES), to arm customers with unified cyber-threat detection, analysis, and response to thwart cyber attacks.

The combined solution provides new levels of visibility and context, empowering security teams to seamlessly track and correlate activity across their networks and endpoints. This enhanced visibility helps security teams accelerate detection and response times and streamline forensic investigations.

With this partnership, Corvil’s Security Analytics, leveraging high-performance deep packet inspection, integrates with Cb Response. The combination equips businesses to detect malicious activity in real time, as well as track and disable attacks with greater accuracy.

The Corvil and Carbon Black integration also enables customers to rapidly prioritize alerts, reducing the overhead from false positives and manual investigations. By correlating malicious traffic and cross-device user activity with originating processes and specific files accessed - both in real-time and retrospectively - security teams can more rapidly identify and investigate threats.

As a result of this solution, customers see enhanced value from their existing threat intelligence sources and have the ability to track both Indicators of Compromise (IoCs), and Patterns of Attack (PoAs) seen across the network and endpoints.

“Many companies, including the world’s leading financial services firms, rely on Corvil’s real-time technology to safeguard their critical businesses,” said Tom Barsi, senior vice president of business development for Carbon Black. “This integration enables customers to extend the visibility and protections of Corvil’s network-based Security Analytics to the endpoint with Carbon Black. By integrating our similar capabilities across network and endpoint, security teams have a more powerful and flexible solution at their disposal to detect and combat a broad array of internal and external cyber threats.”

Corvil’s live Security Analytics solution enables customers to identify markers often seen in advanced malware and ransomware, such as command and control and remote encryption traffic. Integration with Carbon Black’s “Live Response” empowers teams to automatically quarantine a host for greater protection.

By correlating Carbon Black’s endpoint data with Corvil’s full-fidelity, retrospective packet capture, the unified solution enables security teams to answer critical questions such as:

  • "How long have the attackers been in our network?"
  • "What sensitive data and credentials have been exfiltrated?"
  • "Which command-and-control servers are communicating with our compromised systems?"
  • “Which mobile and uninstrumented hosts are accessing which resources?”

“As the leader in next-generation endpoint security, Carbon Black provides thousands of organizations with a strong, comprehensive defense against cyber attacks,” said David Murray, chief business development officer at Corvil. “By combining that strength with the highly granular visibility and adaptive context enrichment from Corvil’s Security Analytics, we are, together, able to provide a reinforced picture of malicious activity and more effective and efficient cyber threat protection for organizations.”

About Corvil

Corvil is the industry leader for deriving IT, Security, and Business intelligence from network data. As companies adopt faster and smarter machine technology, it becomes critical to tap into richer and more granular machine data sources to safeguard the transparency, performance and security of critical infrastructure and business applications. The Corvil streaming analytics platform captures, decodes, and learns from network data on the fly, transforming it into machine-time intelligence for network, IT, security and business teams to operate efficiently and securely in this new machine world. Corvil uses an open architecture to integrate the power of its network data analytics with the overall IT ecosystem providing increased automation and greater operational and business value outcomes for its users.

The Corvil solution is trusted by leading financial institutions to safeguard their businesses across the globe involving 354 trillion messages with a daily transaction value in excess of $1 trillion.

Learn more about Corvil: Corvil.com | Twitter | LinkedIn | Facebook

Media Contact

LaunchSquad for Corvil
corvil@launchsquad.com
212-564-3665