Elastic Announces New Osquery Manager Integration and Memory Threat Protection for macOS and Linux
Elastic (NYSE: ESTC) has launched new integrations and enhancements in its Elastic Security solution with the 7.16 release. This update focuses on real-time visibility and protection against advanced attacks. Key features include the Osquery Manager integration for host inspection and additional protections for macOS and Linux. Elastic also introduced certified ServiceNow applications to streamline security workflows, enhancing analyst efficiency and IT coordination. This launch positions Elastic for improved detection and response capabilities in a fast-evolving cybersecurity landscape.
- Launch of 7.16 release enhances real-time visibility and protection against advanced attacks.
- Osquery Manager integration offers streamlined host inspection and immediate data analysis.
- Extended protections for macOS and Linux systems bolster security.
- Certified ServiceNow applications improve security workflows and analyst efficiency.
- None.
Providing Users with Real-Time Visibility and Expanding Protection Against Advanced Attack Techniques
The Osquery Manager integration for Elastic Agent, now generally available in Elastic Security, streamlines host inspection and provides users with real-time visibility into system data, including running processes, loaded kernel modules, and open network connections. Users can now customize the configuration of key settings as well as map saved queries results directly to Elastic Common Schema (ECS) to return normalized data for immediate analysis.
Elastic also added to its prebuilt layered protections with extended malicious behavior prevention and memory threat protection for macOS and Linux systems to stop advanced attack techniques.
Additionally, Elastic introduced two newly certified ServiceNow applications for Security Incident Response (SIR) and IT Service Management (ITSM) to streamline security workflows across products and teams. With the power of Elastic, ServiceNow SIR maximizes analyst efficiency with security orchestration, automation, and response, while ServiceNow ITSM coordinates the IT workloads and processes. The integrations enable users to escalate cases into ServiceNow IT and security incidents and automatically update ServiceNow incidents from Elastic alerts.
For more information read the Elastic blog about what’s new in Elastic Security 7.16.
About Elastic:
Elastic is a search company built on a free and open heritage. Anyone can use Elastic products and solutions to get started quickly and frictionlessly. Elastic offers three solutions for enterprise search, observability, and security, built on one technology stack that can be deployed anywhere. From finding documents to monitoring infrastructure to hunting for threats, Elastic makes data usable in real time and at scale. Thousands of organizations worldwide, including Cisco, eBay, Goldman Sachs, Microsoft, The
The release and timing of any features or functionality described in this document remain at Elastic’s sole discretion. Any features or functionality not currently available may not be delivered on time or at all.
Elastic and associated marks are trademarks or registered trademarks of
View source version on businesswire.com: https://www.businesswire.com/news/home/20211208006069/en/
PR-Team@elastic.co
Source:
FAQ
What are the new features in Elastic's 7.16 release for security?
How does Elastic's new release improve real-time visibility?
What is the impact of ServiceNow applications on Elastic's security workflows?
When was the Elastic 7.16 release announced?
