Story image

Cylance makes APIs available in endpoint detection offering

10 Dec 2018

Security solutions provider Cylance has announced the availability of application programming interfaces (APIs) as part of its endpoint detect and respond offering, CylanceOPTICS.

CylancePROTECT and OPTICS customers can automate repeatable tasks and have the improved ability to identify and respond to advanced threats without an increase in headcount or process complexity.

Extensive APIs enable security teams to more efficiently view, enrich, and contextualise real-time intelligence collected at the endpoint to keep systems secure.

CylanceOPTICS exposes field-tested artificial intelligence to detect and prevent advanced threats, enabling organisations to use automated analyses to disrupt attackers across their environments.

It also builds the policies for device control and memory exploitation protection that prevent attacks from executing in the network.

“Data captured at the endpoint is important to many teams across the enterprise,” Cylance product marketing vice president Sasi Murthy.

”By making that data accessible in real time, we can absolutely improve threat visibility, but we can also improve an organisation’s ability to drive policy compliance, monitor device health, and maintain situational awareness across their vast and changing IT environments.”

The availability of APIs allows CylanceOPTICS to creating automated workflows to generate helpdesk tickets, initiate data collection, quarantine files, or launch other tasks in real time.

Organisations gain flexibility in their security stack because of the interoperability with existing technology investments such as security orchestration, automation, response (SOAR) and security information and event management (SIEM) tools.

Users of the Cylance next-generation AI platform have the ability to correlate endpoint data against known and prospective threats, which provides increased understanding of the attack surface.

Security teams also benefit from the speed and accuracy of bringing new devices online and implementing changes across their ecosystems on the fly.

Last month, Cylance was acquired by BlackBerry for US1.4billion for its AI and cybersecurity capabilities, with the deal expected to close before February 2019.  

BlackBerry executive chairman and CEO John Chen said that Cylance’s leadership in artificial intelligence and cybersecurity will immediately complement its entire portfolio, UEMand QNX in particular.

Cylance will continue to operate as a separate business unit within BlackBerry.

Cylance has worked on creating strategic partnerships this year, including with Unisys, KPMG, and Securonix, to deliver its services on more platforms.

Industrial control component vulnerabilities up 30%
Positive Technologies says exploitation of these vulnerabilities could disturb operations by disrupting command transfer between components.
McAfee announces Google Cloud Platform support
McAfee MVISION Cloud now integrates with GCP Cloud SCC to help security professionals gain visibility and control over their cloud resources.
Scammers targeting more countries in sextortion scam - ESET
The attacker in the email claims they have hacked the intended victim's device, and have recorded the person while watching pornographic content.
Cryptojacking and failure to patch still major threats - Ixia
Compromised enterprise networks from unpatched vulnerabilities and bad security hygiene continued to be fertile ground for hackers in 2018.
Princeton study wants to know if you have a smart home - or a spy home
The IoT research team at Princeton University wants to know how your IoT devices send and receive data not only to each other, but also to any other third parties that may be involved.
Organisations not testing incident response plans – IBM Security
Failure to test can leave organisations less prepared to effectively manage the complex processes and coordination that must take place in the wake of an attack.
65% of manufacturers run outdated operating systems – Trend Micro
The report highlights the unique triple threat facing manufacturing, including the risks associated with IT, OT and IP.
WikiLeaks' Julian Assange arrested in London
There’s little doubt that it’s a day of reckoning for WikiLeaks cofounder Julian Assange today, after his seven-year long protection inside London’s Ecquador Embassy came to an abrupt end.