New Delhi (India), March 2: DNIF HYPERCLOUD is a cloud-native platform that brings the functionality of SIEM, UEBA, and SOAR into a single continuous workflow to solve cybersecurity challenges at scale. The objective is to make it easy for cyber security engineers and analysts to detect and hunt malicious cyber threats without alert fatigue and the huge cost advantages.
Here is an exclusive interview with Mr. Shomiron DasGupta, Founder & CEO, DNIF HYPERCLOUD.
1. Please tell us about DNIF HYPERCLOUD
DNIF HYPERCLOUD is a cloud SIEM for organizations with large datasets. It uses innovative methodologies to reduce the compute and storage footprint and reduce cloud SIEM costs. The platform is extremely mature and has been used by customers with mission-critical goals for the last four years.
DNIF HYPERCLOUD is known for delivering key detection functionality using big data analytics and machine learning. It is a platform that helps customers in ingesting machine data and automatically identify anomalies in data streams using ML and outlier detection algorithms. The objective is to make it easy for cyber security engineers and analysts to detect and hunt threats without alert fatigue and the huge cost advantages.
2. Please tell us more about your business and the services you offer
DNIF HYPERCLOUD is a cloud SIEM with inbuilt UEBA and automation capabilities. It is a cloud-native platform that allows scalability, operational efficiency, and visibility at lesser costs through advanced automation, resulting in faster detection of threats and outliers.
The platform can ingest data from all sources, has extensive integrations built-in and has 100+ extractors written for customer data. It can help organizations:
1. Uncover threat campaigns with a causality chain for potential cyberattack signals
2. Threat hunt in real-time and weed out known bad actors and address vulnerabilities immediately
3. Identify compromised users using inbuilt machine learning to design a quick POA
4. Monitor and analyze log data from various sources for increased log coverage using efficient storage and compute
DNIF HYPERCLOUD is recognized as a leading SIEM in India and the USA. We plan to expand our footprint and are already working on some exciting partnership opportunities with a few global organizations.
3. What makes DNIF HYPERCLOUD stand out?
DNIF HYPERCLOUD offers three distinctive benefits - a simple platform, cost-effective rates, and real-time visibility into the threat landscape. Some of our USPs are:
a. Cost Effectiveness at scale: A large dataset means visibility goals get limited by budget. SIEM is expensive. We've reinvented event storage for analytics and cybersecurity and offer 365 day's hot storage at the price of 30 days.
b. Ease of Onboarding: SIEM is extremely difficult and lengthy to implement. It can take weeks or months to complete the onboarding process. DNIF has an auto-detection engine that does not require configuration for different devices. Just point logs to DNIF and forget about it. The automatic identification of log format and source type takes care of the onboarding.
c. Reduced alert fatigue and analyst's headcount: We use connected signals to reduce 300 threats into 6 to 8 threat clusters or campaign visualizations. This decreases the required headcount for detection and reduces analysts' alert fatigue too.
4. In this evolving world of AI-generated malware, how can an organization stay safe from breaches?
AI-generated software can be resourceful and used for threat intelligence, vulnerability assessment, and incident response. However, it is also prone to several threat attacks. Since a platform like ChatGPT can simulate human-like responses, it can be used to trick people into divulging sensitive information or clicking on malicious links.
Another concern is the increase in phishing attacks. Phishing attacks are one of the most common forms of cyberattacks and involve tricking people into providing sensitive information, such as passwords or credit card details. AI-generated conversation platforms can create convincing phishing messages that are difficult to distinguish from genuine communications. The ability of an AI system to generate such codes at such a nascent stage is raising concerns among many security practitioners.
In such a scenario, organizations need to strengthen their security posture and protect themselves from AI-generated malware. Tools like EDR, Threat Intelligence feeds, and anti-malware solutions can be beneficial. These tools integrated with a machine learning-powered SIEM can strengthen organizations' security multifold.
Pre-empting malware attacks is possible if meticulous procedures are placed and practised. Analyzing sysmon data from servers and workstations with the help of SIEM technology can help in hunting probable malware attacks and working on them proactively.