_
Version 2.0 of the NDR solution Custocy now available!
New features that improve the security of corporate networks.
Custocy, a French editor specialised in cybersecurity, has announced the launch of version 2.0 of its NDR (Network Detection & Response) solution: a platform based on the power of artificial intelligence to detect unknown and sophisticated cyberattacks ongoing in a corporate network.
An improved level of AI detection
With its expertise in Artificial Intelligence, Custocy brings in this second version, three new features to offer companies an optimized monitoring of their IT network.
Behavioural Analysis of Asset Types
This is an Artificial Intelligence that models the normal behaviour of a group of assets (servers, computers, applications, etc) and detects when any of them deviate from the norm.
This feature allows the identification of unusual behaviour on the network such as connections at unusual times, unauthorised access to user accounts, etc; and the detection of zero-day attacks for which there is no known signature.
Projection into the MITRE ATT&CK
Custocy has integrated this new feature that will highlight the threats detected by the tool in the MITRE ATT&CK matrix to match the associated technical tactics and actions to thwart them. A colour code is used (from green to red) to understand at a glance the criticality of the threat.
In addition, there is an investigative view using the categories “mitigations, data sources and groups” of the matrix to understand in detail what has happened. This will allow security teams to follow each stage of an intrusion and respond to incidents quickly and effectively.
QRadar and Secureworks integration
It is now possible to benefit from an integration with these two existing market solutions. This feature allows to automatically feed the threats detected by Custocy into the QRadar and Secureworks interfaces, so analysts can access the alerts directly from their SIEM or XDR solution. Everything is centralised, it is no longer necessary to correlate several tools.
Our NDR solution has finally been tested in the network of our first customers. As a result, we have made improvements on the back end such as better monitoring of the chain and more automated scaling. The goal is to enable companies to benefit from better detection of advanced threats while ensuring 88 times less false positives.
About Custocy
Formerly Cyblex Technologies, Custocy is an editor specialised in cybersecurity, based in Labège, in the Occitanie region.
With a team of PhDs in artificial intelligence and experts in cybersecurity, it has designed its NDR (Network Detection & Response) solution.
The Toulouse-based company stands out for its strong expertise in artificial intelligence, which, when applied to the cyber domain, guarantees companies detection and resilience to cyber attacks thanks to enhanced monitoring of their computer network.
The start-up raised 3 million euros in early 2022 with the support of BPI France and Capital Croissance. It is supported by the Occitanie Region and collaborates with the LAAS-CNRS. In October 2022, it also joined the Swiss cyber incubator programme, Tech4Trust.
Don’t miss our latest news. Follow us on LinkedIn and Twitter.