-
Better detection for Compromised Credentials and Cloud-Native Ransomware - these are the two initially targeted detection use cases
-
Automatically combines events from many detection sources
-
Provides a single, actionable “story” on cloud activity (vs multiple isolated alerts)
Provides improvements in: cross-model detections, leveraging domain knowledge at scale, scaling up detection services, and incorporating user feedback
Find out more here:
https://docs.lacework.net/console/introduction-to-composite-alerts
Agent
N/A
Platform
Using Lacework/Operationalizing
Cloud
AWS