LogRhythm has acquired MistNet, which will allow LogRhythm to deliver intelligent, machine-learning based detection and response capabilities that incorporate network detection, user and entity behaviour analytics (UEBA), endpoint detection and response data (EDR), and additional MITRE ATT&CK detections to solve current and emerging security and risk problems.
The Network Traffic Analysis (NTA)/Network Detection and Response (NDR) market is approximately $1.5B and will grow at 17 percent CAGR between 2020 and 2026, according to Global Market Insights. As organisations seek to simplify, optimise and extend their detection and response capabilities, they look to vendors to provide more holistic services, which is fuelling the consolidation trend among NDR, EDR, UEBA and security and event management (SIEM) solutions.
“MistNet.’s solution will facilitate our goal of addressing current and emerging endpoint security needs for our global customers and partners,” said Mark Logan, president and CEO of LogRhythm. “MistNet complements our existing SIEM platform by enhancing deep network visibility, behaviour analytics and threat detection capabilities and will accelerate LogRhythm’s reach into the XDR market.”
The acquisition delivers the ability to collect and enrich tremendous amounts of security data ‘on location,’ generating exceptionally accurate behavioral models and threat models without having to move any of the data. MistNet’s patent-pending TensorMist-AI™ technology also brings powerful AI capabilities to LogRhythm by constructing a geo-distributed meshed data pipeline that combines scale-out data management with distributed processing analytics. This provides improved network visibility to increase detection and reduce the time to respond to advanced persistent threats (APTs) that are commonly able to bypass traditional perimeter defenses. MistNet’s CyberMist product suite is currently used by large enterprises worldwide.
“The acquisition creates significant product synergy at the convergence of XDR and SIEM that will positively impact the industry, including the potential for accelerating detection based on open frameworks such as MITRE ATT&CK and driving additional use cases for supply chains, public cloud and IoT/OT security,” said Geoffrey Mattson, president and CEO of MistNet.
Read the latest edition of PCR’s monthly magazine below: