Security intelligence and management solutions company Exabeam Inc. today announced its first new product release since it merged with LogRhythm Inc. in July, including enhancements and the launch of a new service that combines features from both companies for advanced behavior analytics.
The new service, called LogRhythm Intelligence, is an artificial intelligence-powered add-on that delivers behavioral detections into the LogRhythm Machine Data Intelligence Fabric to escalate anomalous activity of users and hosts into its SIEM user experience.
LogRhythm Intelligence uses insights generated by 795 behavioral models and 1,800 fact-based rules to allow analysts to build searches, dashboards and reports and execute security orchestration and automated response capabilities within LogRhythm SIEM. The 795 behavioral models are applied to every user and device to measure normal and abnormal behavior, complementing pre-packaged fact-based rules.
The service reduces the number of manual rules customers need to create while also reducing the rate of false positives. With the service, Exabeam says, customers achieve greater visibility into sophisticated attacks and techniques such as malicious and compromised insiders, credential theft and lateral movement, resulting in faster, more accurate threat detection and response.
Exabeam also announced enhancements to its cloud-native New-Scale Security Operations Platform with several key updates. The updates include streamlined log ingestion through new cloud collectors, improved dashboards via Exabeam Copilot and expanded regional support, including deployment in Saudi Arabia.
The platform’s new features save security teams time by simplifying data collection and improving threat detection accuracy. Exabeam Copilot’s integration of generative AI now allows users to create dashboard visualizations and compliance reports with natural language, further enhancing SOC performance and efficiency.
The LogRhythm self-hosted SIEM platform has also been enhanced with features that give customers improved log source management and configuration and optimized analytics for enhanced load handling to meet the scale-on-demand requirements demanded by security operation centers. Key improvements include better log source management and optimized analytics to meet the growing demands of modern SOCs with scalable, on-demand performance.
The platform’s new features include enhanced log source management through the Web Console and application programming interface, giving analysts immediate visibility into and easier editing of sources. Additionally, analytics have been enhanced with updated Elasticsearch and the company’s Advanced Intelligence Engine to provide faster detection, up to 50% better pipeline throughput and enhanced log processing for quicker and more accurate threat detection.
“Our goal is to empower security teams with AI that augments their skills, accelerates their workflows and ultimately makes them more effective in protecting their organizations against increasingly sophisticated threats,” said Chief Product Officer Steve Wilson. “We’re committed to pushing the boundaries of what’s possible in the industry, empowering organizations to stay ahead of evolving threats in an increasingly complex digital landscape.”