LogRhythm has acquired threat detection startup MistNet for an undisclosed sum. The acquisition will allow LogRhythm to deliver machine learning-based detection and response capabilities that incorporate network detection, user and entity behavior analytics (UEBA), endpoint detection and response data (EDR), and additional MITRE ATT&CK detections to solve current and emerging security and risk problems.
According to the company, the acquisition delivers the ability to collect and enrich tremendous amounts of security data ‘on location,’ generating accurate behavioral models and threat models without having to move any of the data.
MistNet’s patent-pending TensorMist-AI technology also brings AI capabilities to LogRhythm by constructing a geo-distributed meshed data pipeline that combines scale-out data management with distributed processing analytics.
This provides improved network visibility to increase detection and reduce the time to respond to advanced persistent threats (APTs) that are commonly able to bypass traditional perimeter defenses. MistNet’s CyberMist product suite is currently used by large enterprises worldwide.
LogRhythm’s SaaS platform and cloud collection capabilities, combined with MistNet’s distributed analytics, will empower customers to manage their security and compliance needs easily and with the highest return on investment.
MistNet’s network detection and response capabilities, along with LogRhythm Labs’ library of out-of-the-box threat detection, compliance and operating technology solutions, enables customers to realize value quickly and with minimal effort and required knowledge, the company added.
Customers can deploy MistNet as a standalone solution or in combination with the LogRhythm NextGen SIEM Platform.