Cloud-native forensics technology provider Cado Security announced that it is raising $10 million for a planned expansion through a funding round headed by Blossom Capital, TechCrunch reports. The funding campaign reflects the growing demand for advanced forensics services as part of an enterprise’s cloud security protocol, as evidenced by the recent SolarWinds attack, which demonstrated that the ability to perform advanced investigations to determine the specifics of a breach, whether it is still active and whether attackers can still exploit the vulnerability, is just as important as data loss detection and attack prevention. Response – Cado’s offering – is designed to be compatible with on-premises, cloud and hybrid environments and is available for deployment on AWS EC2 as well as Kubernetes, Docker, AWS Fargate and OpenShift container systems, with plans to expand to Azure, according to the company, though Google Cloud is currently a low-priority target, according to CEO James Campbell. Response addresses the typical post-breach problem of slow investigation times by employing big data tools that enable fast, automated analysis of activity logs to detect unusual activity and discover patterns – a method for which the company has filed patents.
Jill Aitoro is senior vice president of content strategy for CyberRisk Alliance. She has more than 20 years of experience editing and reporting on technology, business and policy. Prior to joining CRA, she worked at Sightline Media as editor of Defense News and executive editor of the Business-to-Government Group. She previously worked at Washington Business Journal and Nextgov, covering federal technology, contracting and policy, as well as CMP Media’s VARBusiness and CRN and Penton Media’s iSeries News.
Google Cloud recently introduced Community Security Analytics (CSA), a set of open-sourced queries and rules for self-service security analytics geared toward helping security teams detect common cloud-based threats.