Sqrrl Blog

Feb 25, 2015 8:30:00 AM

Top of Food Chain: Cyber Hunting with Sqrrls

An Interview with Sqrrl’s David Bianco

Executive Summary

Big Data Security Analytics techniques are critical to hunt for advanced cyber threats. Starting with just some hypotheses, a seasoned hunter can use a Big Data tool, such as Sqrrl Enterprise, to iterate through large amounts of data and detect anomalies that would otherwise go unnoticed by traditional defenses. While more and more companies are attempting to build cyber hunting capabilities, few tools exist to assist analysts in the challenges of the hunt. The expansion of data science capabilities into the cybersecurity realm holds great promise for the advancement of cyber hunting. Sqrrl’s David Bianco sheds some light on these crucial developments surrounding the rise of threat hunting, and how Sqrrl’s solution can provide these much needed solutions.

Read More

Topics: Big Data Security, Breach Detection, Cyber Hunting

Jan 27, 2015 7:30:00 AM

Linked Data Analysis of Trading Activity with Corvil and Sqrrl

Sqrrl is featured in a blog post by Corvil’s Fergal Toomey, covering Linked Data Analysis of Trading Activity. The full blog is featured in the link below, and it covers how Corvil and Sqrrl partnered to use Linked Data Analysis to visualize relationships in large trading datasets.

Toomey discusses how Sqrrl’s approach can be used in a typical brokerage environment to visualize performance and identify bottlenecks and suboptimal/fraudulent behaviors. He also covers how Corvil’s Streaming Analtics Platform can be used to extract data which then can be easily forwarded to analysis systems like Sqrrl via open Analytics Streams.

Read More

Topics: Hadoop, Cybersecurity, Corvil, Fintech, Fraud

Dec 1, 2014 8:30:00 AM

BlackEnergy: Mitigation with Big Data Analytics

The Lurking Threat

In late October, the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) issued a formal alert warning that it had “identified a sophisticated malware campaign that has compromised numerous industrial control systems,” including GE Cimplicity and Siemens WinCC platforms, from as far back as 2011. These are widely used to control and monitor critical infrastructure from gas pipelines to electrical grids, so the threat has prompted a rising concern in the energy community that systems across the country have been compromised and could be imminently threatened by malicious actors.

Read More

Topics: Accumulo, Hadoop, Big Data Security, Cybersecurity, APT Campaign, Malware

Nov 6, 2014 8:00:00 AM

Coordinated Information Sharing on Cyber Threats and Secure Data Management

The Evolving Threat Landscape

Mitigating cyber threats is a difficult task. As has been shown time and again in various recent data breaches, maintaining up to date security measures and abiding by industry prescribed best practices can leave even the most prominent and incident-ready organizations open to breaches. With a diverse range of constantly evolving Advanced Persistent Threats (APTs), traditional defenses like firewalls and signature-based malware detectors are at an inherent disadvantage against motivated attackers looking to infiltrate data systems of all kinds.

Read More

Topics: Accumulo, Big Data Security, Sqrrl Enterprise, Partnership, Info Sharing

Oct 29, 2014 8:00:00 AM

The "Pawn Storm" Campaign and Dynamic Threat Detection

An advanced and widespread malware campaign dubbed “Pawn Storm” was recently profiled in a white paper by security researcher Trend Micro. The campaign has reportedly been targeting and compromising a number of high value government and private sector defense systems across the world for the past several years.

Target and Scope

Read More

Topics: Cybersecurity, Breach Detection, APT Campaign, Malware

Oct 16, 2014 8:00:00 AM

JPMorgan and Big Data Security Analytics

By George Aquila

Editor’s Note: This will be the first in a series of regular blog posts where we track the current state-of-the-art around cyber attacks and assess how Sqrrl’s Big Data Analytic Platform can assist in these situations.

The Attack

On October 2nd, JPMorgan Chase revealed through an SEC filing that it had been the target of a massive cyber intrusion resulting in a significant data breach over the course of the summer months, roughly between June and August.

Read More

Topics: Big Data Security, Cybersecurity, Breach Detection

Aug 20, 2014 2:24:00 PM

The NoSQL Animal Kingdom

With NoSQL Now! is currently underway in the Valley (and with a few Sqrrls in attendance), I got to thinking about how this phenomenon came to be, how it gained momentum, and the types of possibility we have before us in terms of solving actual problems.

Read More

Topics: NoSQL, Sqrrl Enterprise, Graphs

Aug 11, 2014 2:36:07 PM

Accumulo Summit Technical Talks and Videos

On June 12th, we co-sponsored the first annual Accumulo Summit. The event was a great success with over 300 people in attendance. A major highlight of the day was hearing from General Keith Alexander, Former Director/Chief of the NSA/CSS & Commander U.S. Cyber Command. Also notable, were the keynote presentations by Dr. John Wilson of Optum as well as John Elser (Hortonworks) & Sean Busbey (Cloudera). Some of the technical talks included the following:

Read More

Topics: Accumulo, Blog Post

Jul 16, 2014 2:19:01 PM

Bulk Loading in Sqrrl Pt.2: Custom Transformers for Graph Construction

This is the second post in a series by Chris McCubbin, Sqrrl's Director of Data Science. It covers using Sqrrl's Transformer API to directly emit knowledge graph objects, and highlights some examples including breadth-first search and graph query.

Read More

Topics: Graphs

Jun 30, 2014 12:00:00 PM

Bulk Loading in Sqrrl Pt.1: The Basics

This post is by Sqrrl's Director of Data Science and Co-Founder, Chris McCubbin. It covers the basic design and functionality behind the Bulk Loading API on Sqrrl's ingest pipeline. In a future post, Chris will cover using the advanced Transformer interface of the API to construct graph objects.
Read More

Topics: Accumulo, Big Data, Blog Post, Sqrrl Enterprise


Subscribe to Email Updates