The security company Druva has announced new capabilities to help customers more efficiently investigate and remediate cyber threats. 

It launched a new Threat Hunting capability for indicators of compromise (IOC) that provides IT and security teams with insights into the gestation, timeline, and impact of potential threats in their environment.

According to the company, traditional security tools tend to focus only on the perimeter and production environments, and don’t provide good visibility into data, while Druva’s solution leverages data to provide a more complete digital forensics picture. 

Threat Hunting includes granular logs of data changes to help teams better analyze threats. It also helps them detect and remediate IOCs, such as specific file extensions or file patterns. Druva also scans multiple backups to create a curated snapshot and find the most clean version of each file so that it can minimize data loss in the event of an incident. 

“With today’s more advanced and persistent threats, we need to go beyond perimeter-based security. Cybersecurity needs to be complemented with the power of data to handle these risks,” said Jaspreet Singh, CEO and co-founder of Druva. “Druva’s 100% SaaS approach seamlessly consolidates and contextualizes data across all workloads, enabling customers to bolster cyber resilience and accelerate incident response.”

In addition to Threat Hunting, the company also expanded its Managed Data Detection and Response (Managed DDR) service, which combines technology with Druva experts who monitor customer backups for threats. 

Managed DDR offers 24x7x365 monitoring of backups, analysis by Druva’s incident response team, pre-build response runbooks and automatic lockdown of backups, and expedited support and assistance to customer teams during recovery.


You may also like…

Q&A: What the consolidation of the SIEM market means for IT

New report reveals riskiest device types