RAD Security

Today, signature-based detection is the standard for detection and response in cloud environments. However, a brief look at the history of signature-based threat detection in both endpoint and network security reveals its limitations, demonstrating a mandatory shift towards behavioral methods over time. Given the current reliance on signature-based detection in cloud security, what does the future hold? Are signatures destined to become obsolete once again? Jimmy Mesta 🤙 thinks so! Check out his piece in Security Boulevard: https://lnkd.in/ek-ke8t2

Our sales leader Jason Pitzen brought his expertise to the Hubscale podcast. Once Jason completes a sale, he works hard to ensure our customers have success using RAD. Check out the episode!

Recent attacks like Dero, Monero, RBAC-Buster and XZ Backdoor demonstrate an evolution in the threat landscape. Jimmy Mesta 🤙 proposes new criteria for detecting and responding to the latest cloud native attacks in this piece in Cyber Defense Magazine's September newsletter. Check it out here: https://lnkd.in/g97kaw2b

Security 🤝 Business enablement. We recently helped a large insurance company reduce their annual cloud spend by $300K by showing what nodes were not in use. RAD Security can help your team save money by identifying: 👉 Old clusters that might incur extended support charges 💡 Dormant/abandoned clusters that are not running business workloads, and are only running observability/security workloads 💥 Clusters that belong to a similar domain, and can be consolidated (e.g. by cluster, by business function) Want to explore how you can save? Schedule a quick demo with our team now. https://rad.security/demo

💡 How to get ahead as a CISO? Deliver revenue gains by protecting the business while keeping IT infrastructure secure on a tight budget. Forrester's CISO budget priorities for 2025 focus on supply chain and API security. Check out the full article here 👇 https://lnkd.in/e5wQpcAX

Imagine this: You spent millions on cloud security, and found out about a breach 9 months later. Every day the breach went undetected, your company lost $16,000 in business and response costs. Your best security engineers spent ½ their  time on signatures that failed in the end instead of detecting the attack. The personal impact of this breach was fear of litigation, and much less precious time with family and friends. How would this story change if you could: - Easily input your own custom knowledge into your detections - Detect an entire sequence of attack events . . . in real time  - Know - transparently - what good looks like across your entire cloud environment - Get a real-time attack view from the K8s infra & identity to the workload It’s not just a story for RAD customers, because with RAD, they get automated, eBPF-powered behavioral fingerprints that can be updated, verified, and changed based on your environment parameters, combined with AI-based investigation and enrichment. These teams want to re-define what they can do with their current resources: - For starters, giving enough time back to properly operationalize new detections, because with RAD behavioral fingerprints, security engineers spend 90% less time on detection signatures - Preventing massive costs in the case of a breach with early detection, because proactive profiling can detect novel and emerging threats - Gaining better coverage with the same team & cost, because of automated, AI-based enrichment and prioritization - Removing major coverage gaps, because it doesn’t matter anymore how much of the environment a signature can’t define, where you can’t deploy CPU-hogging agents, or that signatures can’t pick up x number of ways to create a reverse shell We don’t think RAD’s approach is rocket science. We just know how much signatures suck, and believe that teams deserve better. Try it today - and re-define what your team can do with the same resources, people and time. This blog has more details on the upside with RAD: https://lnkd.in/ebj9Nfqr

CDR is essential to address today’s emerging threats in cloud native environments. Thanks, Chris, for including us in your latest Resilient Cyber newsletter!

The Trace3 Innovation Team answers several questions about runtime security in their latest piece, like: 👉 How is this new, and why now? 👉 How did we get here? 👉 What will this mean for enterprise adoption? We were included amongst other runtime security innovators in this roundup. Check it out! https://lnkd.in/gQBqZaYN

2 days ago we shared a short snippet of a happy RAD customer talking about how he and his team are using behavioral fingerprints at one of the world's largest gaming companies . . . but that is just the beginning! Get the full scoop, and extra points if you can point out where his team is creating a security flywheel with engineering. Is the flywheel for 1/ Kubernetes Security or 2/ Identity Threat Detection and Response? Watch the video and find out!

What do you think is the difference between Cloud Detection and Response (CDR) and a CSPM tool? Or a CNAPP? Use this blog as a starting point to formulate your own perspective! From our perspective, "CDR, if it’s doing its job, should be able to detect breaches in real-time, as well as respond in the case of an incident, and it should apply not just to known threats, but also novel threats and zero days. It should also be able to assist in the vast majority of cloud use cases, including containerization and Kubernetes, versus treating modern application development in the cloud as an afterthought." https://lnkd.in/dcQ2s2Nk