GreyNoise Intelligence has introduced a new service that provides alerts on possible network intrusions.
The cyber-security firm analyzes scan and attack activity across the Internet, filtering noise generated by mass scanners, search engines, bots, worms, and crawlers.
Such activity reaches all servers and computers connected to the web, and GreyNoise looks into it and labels it in an effort to help filter untargeted scans and identify malicious attacks.
This week, GreyNoise introduced GreyNoise Alerts, a free service that alerts organizations when suspicious activity is identified on their network.
With servers deployed around the world, the security company continuously monitors the scan traffic and looks for signals coming from devices within a specific organization’s environment, issuing alerts when malicious artifacts are observed in this traffic.
The service, the company says, is pretty straightforward: “Get an email if GreyNoise observes any Internet scan and attack traffic originating from networks that belong to you. It's that simple.”
To take advantage of the service, which is currently in beta, an organization would simply need to create a free account with GreyNoise, then enter the IP ranges within their organization.
“If GreyNoise observes any devices within those ranges become compromised or start scanning the Internet, we send you an email,” the company explains.
Customers can input their Classless Inter-Domain Routing (CIDR) blocks, configure names and scanning intervals, and then provide an email address to receive the warnings. The email alerts include information on the IPs that match the query.
The free service, GreyNoise says, is expected to help organizations easily distinguish between targeted and untargeted attacks, r ..
Support the originator by clicking the read the rest link below.
