PRESS RELEASE
DENVER, March 5, 2024 – Red Canary today announced comprehensive coverage of its detection and response capabilities to include all major cloud infrastructure and platform services providers, such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP). Red Canary can detect suspicious activity across all major cloud environments and seamlessly correlate that data with other leading cloud security products, allowing businesses to spot and block threats before they can cause damage. Red Canary’s vendor-neutral approach powers these new capabilities, providing security teams with actionable threat intelligence and complete visibility from the control plane to containers and workloads.
Security teams rely on various tools, but integrating them internally for threat detection and response can be difficult, especially in large organizations with multicloud environments.
Recent research shows that many companies currently use or plan to use at least two cloud infrastructure providers, and approximately 31% use four or more. As a result, IT and security teams are facing an increasing number of new cloud threats. In 2023, in fact, Red canary detected cloud accounts are compromised 16 times more frequently than in 2022, ranking it among the top five MITER ATT&CK techniques analyzed across 58,000 confirmed threats identified in 216 petabytes of telemetry.
With Red Canary, organizations can protect their cloud environments, identities, and endpoints, all using a single, intelligence-driven security operations platform. This industry-leading approach significantly improves the productivity of overworked security analysts by eliminating the need to sift through multiple tools, sift through raw alerts from various sources, and manually analyze data. By relying on Red Canary to detect and respond to prevalent threats, internal security teams can have more time to focus on their company’s specific security needs and requirements.
What’s new:
Defend complex environments and streamline workflows with comprehensive detection and response coverage across all major cloud providers
-
Amazon: Amazon Web Services (AWS), including AWS CloudTrail and Amazon GuardDuty
-
Microsoft: Microsoft Azure, Microsoft 365, Microsoft Sentinel, Microsoft Defender XDR and Microsoft Defender for Cloud
-
Google: Google Cloud Platform (GCP) and Google Workspace
Get 24/7 access to cloud security expertise
-
Useful threat information: Over 400 updated threat profiles provide insights into cloud threats and how adversaries operate in cloud environments
-
Run more effective tabletops: New scenarios enable customers to understand, prepare for, and respond effectively to prevalent and emerging threats
Improve threat protection in containers and production environments
-
Additional support for containers and Kubernetes: Improved metadata collection adds new insights for Linux-based environments allowing security analysts to quickly pinpoint threat sources
Enrich threat data with identified risks and misconfigurations
-
Deeper integrations with security posture management (CSPM) tools in the cloud: Correlated alert data from vendors like Lacework and Wiz provides additional context that accelerates threat detection and response and streamlines prevention efforts
Operationalize cloud-native SIEM investments
-
Microsoft Sentinel Co-Managed Engagement: Expanded services to implement and optimize SIEM technology include security objective consulting along with analytics, threat hunting queries, automation playbooks, and dashboards to maximize SIEM value
Comments on the news:
-
“In today’s rapidly evolving cybersecurity landscape, where cloud-based attacks are not only common but increasingly sophisticated, businesses require more than just protection – they seek clarity and control over their diverse attack surface. The latest expansion of Red Canary is a testament to our commitment to meeting this need head-on,” said Mary Writz, senior vice president of product management, Red Canary. “By integrating comprehensive protection into every major public cloud, no we’re just protecting the cloud, but we’re transforming the way security teams interact and protect their business.”
-
“We are excited to partner with Red Canary to help customers improve their security posture in the cloud,” says Oron Noah, head of extensibility and product partnerships, Wiz. “Red Canary’s expertise in threat hunting and incident response is a perfect complement to Wiz’s deep cloud visibility and insights. Together, we can help customers detect and respond to threats in their cloud environments more quickly and effectively.”
MDR for cloud availability:
-
Support for Microsoft Azure is generally available
-
Support for Amazon Web Services is generally available
-
Support for Google Cloud Platform is currently in early access and is expected to be generally available in the second quarter of this fiscal year
-
Wiz support is expected to be generally available in the second quarter of this fiscal year
Additional Resources:
-
Find out more by reading the announcement blog. subscribe now and join us for the next webinar on how to identify and address security challenges in multicloud environments on March 19. subscribe now for the webinar presenting the 2024 Threat Detection Report on March 13.
About Rosso Canarino
Red Canary is a leader in managed detection and response (MDR). We serve businesses of all sizes and industries, focusing on identifying and blocking threats before they can have a negative impact. As the security ally of nearly 1,000 organizations, we provide MDR for our customers’ cloud workloads, identities, SaaS applications, networks, and endpoints. For more information on Red Canary, visit: https://www.redcanary.com.