Stellar Cyber Unveils AI-Powered Incident Correlation

Enterprise Security Magazine | Tuesday, August 10, 2021

Changming Liu, CEO, Stellar Cyber

Stellar Cyber has announced a significant advancement in security analyst efficiency, allowing them to detect assaults rapidly.

FREMONT, CA: Stellar Cyber, the provider of Open XDR, the only intelligent, next-gen security operations platform, has announced a significant advancement in security analyst efficiency, allowing them to detect assaults rapidly. Innovative GraphML algorithms are used in the latest incident correlation technology to automatically aggregate and integrate massive amounts of alerts and events into a considerably smaller number of highly accurate and actionable incidents. The development provides security analysts with far more actionable data on how and where attacks happen and the most serious ones.

'Stellar Cybers initial interface aimed to increase security analyst efficiency by presenting a lot of critical information in an easy-to-read format, but the AI-powered incident correlation represents a leap by orders of magnitude," said Rik Turner, Principal Analyst at Omdia. "The new approach uses the company's machine learning algorithms to automatically group and prioritize events, avoiding the pitfalls of a flood of minimally productive alerts. Now analysts can see the source and progression of attacks more quickly and take action to curtail them in a timely fashion."

By incorporating several related alerts and events for far higher levels of accuracy and intelligence, switching from an alert-based to an incident-based detection significantly increases detection efficiency. The method reduces the issue of various individual alerts with a high percentage of false positives. This ability allows security analysts to boost their effectiveness by orders of magnitude by drastically lowering the amount of manual work they have to do and the number of cases they have to deal with. The ground-breaking technique prioritizes instances by offering more detail and better context and by using automatic scoring. The Mean Time to Detection (MTTD) and the Mean Time to Resolution (MTTR) decrease immensely, lowering the risk of current cyberattacks.

"Stellar Cyber's new AI-driven incident correlation alert grouping capability makes it far easier for our teams to prioritize collections of alerts that point to an attack. Attacks that might have taken days or weeks to discover are now obvious in minutes," states Presley Prescott, founder, and CTO of LOEPRE, a Stellar Cyber partner and OEM based in Germany.

Weekly Brief