April 25, 2024

Chronicle, a security analytics platform, joined Google Cloud in June 2019. The platform itself was launched at RSA 2019 “to help change the way any business could quickly, efficiently, and affordably investigate alerts and threats in their organization.”

Google announced another two additions to the platform: Threat detection using the new YARA-L rules language, and enhanced data modeling.

YARA is a language built for detecting and recognizing malware (YARA-L is a version that logs information) which Google said is “built specifically for modern threats and behaviours.” Its addition will allow Chronicle to better detect new forms of malware and novel forms of attack.

Google Describes YARA-L’s capabilities as being able to bring “massively scalable, real-time and retroactive rule execution” to Chronicle’s existing threat detection capabilities.

The second addition to Chronicle is what Google called “intelligent data fusion.” This new tool includes a new type of data model and the ability to link multiple security events into a single timeline for improved incident modeling.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Related Post

VPN ! Terms that comes infront .

April 22, 2020

Maze ! How this Creep gets the victim Mazed

April 19, 2020

You may have missed

Google Fixes Critical Vulnerability in Chrome -CVE-2024-4058

April 24, 2024

Red Ransomware Victimized Targus

April 23, 2024

Oracle Virtual Box Vulnerability PoC Released – CVE-2024-21111

April 22, 2024

CrushFTP Zeroday Vulnerability Exploited in Wild attack

April 21, 2024

TheCyberThrone Security Week In Review – April 20, 2024

April 21, 2024

MITRE Breached Exploiting Ivanti Zeroday

April 20, 2024

Discover more from TheCyberThrone

Subscribe now to keep reading and get access to the full archive.

Continue reading