Reducing Alert Fatigue with GreyNoise's Andrew Morris
Security Sandbox - En podkast av Hacker Culture FM
Kategorier:
The background noise of the Internet is a loud hum and rumble. Everyday, automated scanners bombard servers with traffic. Sometimes they're benign, other times malicious; when you're an analyst, it takes time to tell the difference. For the past year, Andrew Morris (@Andrew___Morris) has been helping companies filter pointless alerts and reduce false positives. He's built GreyNoise Intelligence, a platform that helps companies and analysts understand what NOT to worry about. Through collecting and analyzing widespread internet scans and attack activity, GreyNoise gives SIEMs the ability to tune out the background noise of the Internet.