Why SIEM + NDR + Any EDR Is the Strongest Path to a Human-Augmented Autonomous SOC Every security leader faces the same question: what should be at the core of a modern SecOps platform? CrowdStrike, SentinelOne, and others argue for an endpoint-first approach: start with EDR, then bolt on SIEM and any NDR. At Stellar […]
Building the Right Foundation for the Future SOC Read More »
Bullish on Autonomous SOC. Realist about what gets us there. There’s been plenty of talk lately about the Autonomous SOC — a future where machines don’t just alert but correlate, triage, investigate, and respond. It sounds fantastic, especially if you’ve ever worked the night shift buried in alerts. But here’s the truth: you can’t automate
In today’s hybrid world, identity is the new perimeter-and attackers know it. As traditional EDR and SIEM tools struggle to keep up, identity-focused attacks are rising fast. In fact, 70% of breaches now start with stolen credentials, according to Verizon’s 2024 and 2025 DBIR reports. This calls for a smarter approach to identity security-one that
In today’s cybersecurity arms race, visibility is everything—but context is king. Network Detection and Response (NDR) has long been one of the most effective ways to detect lateral movement, ransomware behaviors, and post-compromise activity using deep packet inspection and behavioral analysis. But as threat actors become more evasive and distributed, relying solely on NDR as a
Live Network Traffic is the Missing Link: AI Can’t Detect What It Can’t See AI is dominating cybersecurity conversations—and MSSPs are rushing to capitalize. Whether through SIEM platforms with built-in ML, or EDRs with AI-assisted investigations, the promise is clear: faster detection, smarter triage, and better outcomes. But here’s the hard truth—AI alone won’t save
Why MSSPs Are Betting on AI—But Still Missing the Power of NDR Read More »
Scaling Cybersecurity Services with Agentic AI—Without Losing the Human Touch For today’s MSSPs (Managed Security Service Providers), the game has changed. Rapidly increasing alert volumes, evolving threat vectors, and an unforgiving labor market are forcing providers to rethink how they deliver security services. While legacy SIEMs and first-generation automation promised relief, they often led to
Why MSSPs Need a Human-Augmented Autonomous SOC Read More »
Legacy platforms and point tools fall short. Discover why modern NDR demands a unified, AI-driven approach to outpace today’s cyber threats.
Challenging the Status Quo: Why NDR Needs a New Playbook Read More »
Today’s complex cyberthreat landscape poses both enterprises and Managed Security Service Providers (MSSPs) multiple challenges. To combat evolved threats across diverse IT & Security environments, cybersecurity professionals develop an array of tools and data sources to monitor their specific threat landscape. However, the tool array presents its own difficulties, as there are gaps in visibility,
Empowering SOC Teams with Open and Seamless API Integration Read More »
Stellar Cyber, the innovator of Open XDR technology, announced its partnership with The National Cyber Security Agency of Thailand (NCSA) in providing the new Open XDR platform, under the Stellar Cyber University Program, to enable Khon Kaen University (KKU) free access to the Stellar Cyber’s advanced comprehensive detection and response platform. This collaboration is to
Six years ago, we founded DTonomy, a security automation company. As security software engineers and data scientists who had worked at the forefront of security operations — from building large-scale AI-based EDR systems to managing daily security operations — we were acutely aware of the challenges security teams face. Triaging security alerts during national holidays,
Hyperautomation for Security Teams Read More »
Cylance rocked the legacy endpoint anti-virus world by introducing the first-ever endpoint prevention product that claimed the uncanny ability to detect and prevent never-before-seen malicious files from executing on an endpoint. Previously it was thought the only way to stop malicious files from executing was to have seen them before. With Cylance and its groundbreaking
Republished from Jeffery Stutzman, CEO of Trusted Internet “Extended detection and response is a platform that integrates, correlates and contextualizes data and alerts from multiple security prevention, detection and response components. XDR is a cloud-delivered technology comprising multiple point solutions and advanced analytics to correlate alerts from multiple sources into incidents from weaker individual signals
Gartner’s predictions on OpenXDR? I think they got it wrong. Here’s why. Read More »
Lessons learned from our search for, and integration of, our XDR Trusted Internet is now deploying Stellar Cyber XDR –as a SOC-monitored solution or as an Infrastructure as a Service. The marketing hype around XDR is deafening for those of you considering an XDR. It’s hard to sort through the slick websites and marketing noise
Considering an XDR Purchase? Here Are Our Lessons Learned. Read More »
Working in Cybersecurity for the past two decades, helping managed security service providers (MSSPs) meet the needs of their customers, gives me a unique perspective on how our industry has evolved and ultimately led me to join Stellar Cyber last month to run the Global Service Provider Business. As I get to know Stellar Cyber’s
As continued economic headwinds persist into 2023, security leaders look toward simplifying their security stack and reducing costs. For example, a recent Gartner survey of more than 400 security leaders found that 75% of organizations are pursuing security vendor consolidation strategies, up from 29% in 2020. Within this same survey, the top two security focus
As the majority of the US gets set to “leap forward” this weekend, moving the clocks one hour ahead in the wee hours of Sunday morning, I thought now would be a good time to reflect on how we have been spending our time over here in Stellar Cyber world since our last product update.
The Great Leap Forward: The Stellar Cyber Product Update March 2023 Edition Read More »
Reduce business risk with early and accurate identification and remediation of all attack activity while reducing costs, maintaining investments in existing tools, and accelerating analyst productivity. Open XDR: Overall view and alerting of all potential attacks on the IT landscape In order to successfully protect a company from cyber attacks, a large number of different
Open XDR – Central correlation of all cybersecurity events Read More »
By nature, humans are wired to avoid undue risks. While there are always exceptions to the rules, by and large when given the choice between the known and unknown, the typical person one will choose the known even though the choice might only deliver a marginally positive result. It is this natural bias towards the
One of These Things is not Like the Others Read More »
