Graylog, a global provider of award-winning SIEM and log management solutions announced its acquisition of Resurface.io’s data-driven API security platform.
The acquisition broadens Graylog’s security portfolio and delivers to enterprise customers a comprehensive API security Threat Detection and Incident Response platform to combat the evolving challenges in the API security landscape. The product will be named Graylog API Security.
Resurface API solution
As APIs have become one of the most exposed attack surfaces, Resurface.io's distinct expertise and innovative technologies will help customers fortify their defences against API-related threats.
By building integration points between the Resurface API solution that captures complete API traffic data for insights into attacks and threats and Graylog’s existing SIEM solution, customers will benefit from seamless API security monitoring, threat detection, and incident response capabilities.
Lack of security monitoring
APIs have rapidly become a favoured attack surface for cybercriminals as attacks in Europe reach peak levels"
Graylog CEO, Andy Grolnick, stated, “APIs have rapidly become a favoured attack surface for cybercriminals as attacks in Europe reach peak levels. Yet, not unlike the “emperor has no clothes” fable, most APIs are exposed due to lack of security monitoring, authentication issues, and other vulnerabilities."
"This has led to the theft of millions of personal records (PII), ransomware, and other damaging attacks."
Solution focused on API-specific threats
"What is needed is a purpose-built API security solution focused on the detection of and response to API-specific threats, working in concert with a SIEM to provide a more complete defence.”
“Integrating Resurface.io’s data-driven API security solution with Graylog’s award-winning SIEM platform will empower organisations across Europe to proactively safeguard their APIs and position Graylog as the only SIEM provider offering an API Security solution,” added Grolnick.
WAF and API gateways
An additional layer of defence can also address sophisticated attacks from authenticated users
Unlike other API solutions, Graylog API Security works with existing Web Application Firewall (WAF) and API gateways to provide an additional layer of defence that can also address sophisticated attacks from authenticated users who often gain entry as trial users, partners, and even paying customers.
This minimises disruption to the security team with improvements to the organisation’s overall security posture achieved in minutes.
Key advantages
Key advantages of Graylog’s API Security solution include the following:
- Guided Threat Detection & Response - out-of-the-box alerts that include clear explanations and actionable steps finely tuned to each API, including OWASP Top 10 coverage.
- Continuous, Uninterrupted Monitoring - Runtime scanning provides real-time threat detection without impacting app performance no matter how many threat signatures are checked.
- Full Request AND Response Payload - Goes beyond request header data, sampling, and modeling to enable precise alerts, efficient retroactive threat hunting, incident investigation forensics, and insightful trend analysis.
- Secure Self-Managed Solution - Keeps sensitive data in-house, avoids third-party disruptions and PII concerns, and eliminates the hassle and red tape of SaaS security reviews.
- Effortless Implementation & Maintenance - The self-contained security data lake and modern Kubernetes architecture makes Implementation and maintenance easy and cost-effective for even smaller enterprises
SIEM approach
Resurface.io’s Founder, Rob Dickinson, stated, “I am thrilled to become a part of Graylog and help contribute Resurface’s expertise in API security to their innovative portfolio. Resurface.io’s solution takes a SIEM approach to solve the API Threat Detection issue, so there are many synergies."
"The Resurface API technology and solution will enable Graylog to reach a broader audience, accelerate product advancements, and provide customers unparalleled API ecosystem protection.”
- Network / IP
- IP video surveillance
- Industrial security
- Commercial security
- Security management
- Security policy
- Security devices
- Security tagging
- Security monitoring system
- Network monitoring
- Video analytics
- Remote video monitoring
- Intrusion detection
- Identity management
- Explosives detection
- Industrial security systems
- Security software
- IP Surveillance
- Security service
- Industrial surveillance
- Human identification system
- Visitor management systems
- IP security solutions
- Integration software
- Cyber security
- Video Management System
- Corporate Security
- Central Monitoring
- Data Security
- IP transmission
- Incident Management
- Cloud security
- Weapon detection
