« January 2006 | Main | March 2006 »

"PodSlurping"

Now here's a new phrase - Podslurping:

"Nobody wakes up in the morning worrying about antivirus or their firewall because we all know we need those things, and we all have them in place," Burton said. "Now the greatest threat is very much inside the organization, but I'm not sure there are that many businesses (that) have realized it's possible to plug in an iPod and just walk away with the whole business in a matter of minutes." - Abe Usher

All the more reason to have an effective log management and intelligence solution in place with beahvioral anomoly detection giving you real time alerts when data shifts in abnormal ways.

Posted February 15, 2006 in LogMatters | Permalink | TrackBack (0)

« January 2006 | Main | March 2006 »

LogLogic - The Industry's Best Security Forensics Tool

Last night we scored our second big win of the year with LogLogic 3 named by SC Magazine as the industry's best computer forensics tool. We were also a finalist in SC Magazine's security audit category - and with LogLogic Compliance Suite now launched we will be back next year for that one :-)

The win comes hot on the heals of being named by Info Security as one of the industry's hottest. Congatulations to all our employees, customers and fans that made these terrific wins possible!

Posted February 15, 2006 in LogLogic News | Permalink | TrackBack (0)

« January 2006 | Main | March 2006 »

Launching The LogLogic Compliance Suite

It’s been another big week for the LogLogic team and our customers. LogLogic 3 release 2 adds a ton of new features – 50 plus in fact. And we launched our Compliance Suite. I’m guessing we’ve demoed the product a couple of hundred times in the last week, during which several general themes came through loud and clear:

1. There is a huge operational pain-point that LogLogic solves. Dealing with log data – and hunting for what is invariably a needle in a haystack isn’t enough. People are looking for ease of reporting, alerting and storage. As one attendee said – “a tool that still requires me to write a ton of scripts – or takes hours to generate reports – isn’t of much use”. We’ve talked lots in the past about being like Google. It seemed that everyone wants to be the Google of something. But here’s the catch – Yahoo is a great customer and hugely successful. Drawing a parallel with Yahoo is probably more appropriate for another reason. That is, we provide much deeper utility than simple search. Much like Yahoo is a window into your life. LogLogic is a window into your IT infrastructure.
2. LMI is not SIEM. They are complementary; they both make use of log data. But they are different. It was interesting the number of Enterprises with a SIEM that were now looking for LMI to address a broader pain point.
3. If compliance is the end-game, then controls are the means to getting there. So the end-game is SOX, PCI, HIPAA – pick your flavor of regulation, but to get there you need to implement and then automate controls. People aren’t interested in vendor driven controls – or just security controls – they want tools that align with industry standard best-practices. So, the first release of our Compliance Suite was welcomed for the fact that it aligned with COBIT 4.0. The fact you easily tailor these reports is a big bonus.
4. Real-time correlation across devices using behavioral anomaly detection is cool. We demonstrated the ability for LogLogic 3 to detect a user - still present on the network after being terminated – entering the network, accessing information in Oracle databases and source code repositories and then emailing that data to private email accounts. Rather than just security events we looked at all kinds of user activity and painted a full picture of the incident occurring.
5. People quickly get to all the other things LogLogic can do for them – rapid responses to HR requests on; quick resolution of user authentication and access issues; fine tuning of large network deployments; aggressive alerting on Oracle financial databases; automation of email retention policies… the list is a long one…

So, all in all, a very exciting week. Thanks to Chris and the team at DEMO! for selecting us as one of the exclusive few to present. It was an incredible experience.

Posted February 14, 2006 in LogLogic News | Permalink | Comments (1) | TrackBack (0)

Visit loglogic.com

Subscribe to this blog’s feed

• November 2007
• October 2007
• September 2007
• August 2007
• July 2007
• June 2007
• May 2007
• April 2007
• March 2007
• February 2007
• January 2007
• December 2006
• November 2006
• October 2006
• September 2006
• August 2006
• July 2006
• June 2006
• May 2006
• April 2006
• March 2006
• February 2006
• January 2006
• December 2005
• November 2005
• October 2005
• September 2005

Blogroll

• CynergisTek
• Bruce Schneier
• InfoSecDaily

Compliance

• Continuity Central
• Compliance Pipeline
• SOX Compliance Journal
• Sarbanes-Oxley 101

Good Reading

• Log Management ROI
• Log Management Best Practices
• SANS Institute Log Management White Paper

LogLogic

• O’Reilly
• Anton Chuvakin
• LogLogic.Com
• Jian Zhen

LogLogic Partners

• Juniper Networks
• ONStor
• Counterpane
• Bluecoat

Sites We Watch

• The Merc
• CRN
• IT Architect
• The Reg
• Security Focus
• Slashdot
• TechWeb
• SANS
• C/Net
• CIO Insight
• InformationWeek
• Jamie Lewis - Burton Group
• eWeek
• IT Manager's Journal
• MIT Magazine
• VNU