Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Operationalizing TLSH for Detection with David Burkett

David Burkett, Cloud Security Researcher at Corelight, joined Defender Fridays to discuss operationalizing TLSH for detection which enables fast, scalable, and resilient identification of near-duplicate files, helping to uncover malware variants and similar threats with minimal false positives.

The Importance of Identity Threat Detection and Response (ITDR) in 2025

As cyber threats continue to evolve, organizations face a growing challenge: protecting their most critical assets – identities. With identity now at the heart of security strategies, 2025 marks a pivotal year for addressing identity-centric risks, making Identity Threat Detection and Response (ITDR) a vital component of enterprise security.

Enhancing API Security with Automated Threat Detection

As digital ecosystems continue to grow, APIs have become vital to business operations, enabling seamless data exchange and service integration. However, this increased reliance on APIs also makes them obvious targets for malicious actors. Some common threats such as credential stuffing, scraping, and denial of service (DoS) attacks pose significant risks, leading to data breaches, financial losses, and a decline in customer trust.

Sweet Security Introduces Patent-Pending LLM-Powered Detection Engine, Reducing Cloud Detection Noise to 0.04%

Sweet Security, a leader in cloud runtime detection and response, today announced the launch of its groundbreaking patent-pending Large Language Model (LLM)-powered cloud detection engine. This innovation enhances Sweet's unified detection and response solution, enabling it to reduce cloud detection noise to an unprecedented 0.04%. Sweet uses advanced AI to help security teams navigate complex and dynamic environments with improved precision and confidence.

The Critical Evolution of Cloud Detection and Response

Cloud security has reached an inflection point. Organizations have accelerated their cloud adoption and must navigate a complex threat landscape where workloads spin up and down in seconds, applications deploy continuously and identities span multiple services and providers.

How Calico Network Threat Detection Works

In today’s cloud-native environments, network security is more complex than ever, with Kubernetes and containerized workloads introducing unique challenges. Traditional tools struggle to monitor and secure these dynamic, interconnected systems, leaving organizations vulnerable to advanced threats, such as lateral movement, zero-day exploits, ransomware, data exfiltration, and more.

Feature Announcement: Enhancing ARMO Platform's Threat Detection and Response

We are excited to announce the upcoming enhancement of ARMO Platform’s Threat Detection and Response feature, designed to provide more robust, real-time security protection for your cloud and Kubernetes environments. While the existing feature effectively detects anomalies, suspicious behavior, and active threats, we recognize the need for additional critical components: Policies, Response, and notifications.

How Crypto Mixing Fits Into Your Threat Detection System and Approach to Online Privacy

Think you can fly under the radar and be completely anonymous with cryptocurrencies like Bitcoin and Ethereum? Think again. The crypto you buy on popular exchanges like Coinbase is, by default, far more traceable than cash could ever be. The same blockchain technology that makes it secure also leaves a breadcrumb trail that leads right back to you. All it takes is someone determined enough to follow the money.

Mastering Ransomware Defense For Small Businesses

Ransomware poses a significant threat to small businesses by locking critical data and demanding hefty ransoms. Understanding the mechanisms and vulnerabilities exploited by cybercriminals is crucial in safeguarding your operations. This guide will walk you through practical steps to fortify your defenses, detect threats early and ensure swift recovery.