Saturday, February 8, 2025
HomeComputer SecurityBackstory -Google Released New Tool To Analyze Internal Security Telemetry to Detect...

Backstory -Google Released New Tool To Analyze Internal Security Telemetry to Detect Cyber Threats

Published on

SIEM as a Service

Follow Us on Google News

Google’s enterprise cybersecurity venture, Chronicle announced “Backstory”, a new telemetry platform for enterprises to analyze their internal security telemetry to detect potential cyber threats.

Chronicle was announced by Alphabet company last year, it focuses entirely on Enterprise Cybersecurity. The virus total which was launched in June 2004 by a Swedish company, was later acquired by Google in September 2012 and now the ownership has been switched to the Chronicle.

With Backstory, you can upload your security telemetry that includes high-volume data such as DNS traffic, NetFlow, endpoint logs, proxy logs, etc and the data gets indexed and automatically analyzed.

The service compares your network activity against a continuous stream of threat intelligence signals, curated from a variety of sources, to detect potential threats instantly.

Also, Backstory compares the newly uploaded data to the company’s previous activity, to track the historical access to known-bad web domains, malicious files, and other threats.

“Backstory was designed for a world where companies generate massive amounts of security telemetry and struggle to hire enough trained analysts to make sense of it,” reads Chronicle Blog post.

Backstory cloud service offers organizations a private and secure cloud instance to store all organizations telemetry data. It “normalizes, indexes, and correlates the data, against itself and against the third party and curated threat signals, to provide instant analysis and context regarding the risky activity.”

“With Backstory, our analyst would know, in less than a second, every device in the company that communicated with any of these domains or IP addresses, ever.”

Building a system that can analyze large amounts of telemetry for you won’t be useful if you are penalized for actually loading all of that information. Too often, vendors charge customers based on the amount of information they process reads Chronicle post.

Related Read

Android Rat – TheFatRat Pentesting Tool to Hack and Gain access to Targeted Android Phone

Wifi cracker – Pentesting Wifi Network with Fern WiFi Password Auditing Tool

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Autonomous LLMs Reshaping Pen Testing: Real-World AD Breaches and the Future of Cybersecurity

Large Language Models (LLMs) are transforming penetration testing (pen testing), leveraging their advanced reasoning...

Securing GAI-Driven Semantic Communications: A Novel Defense Against Backdoor Attacks

Semantic communication systems, powered by Generative AI (GAI), are transforming the way information is...

Cybercriminals Target IIS Servers to Spread BadIIS Malware

A recent wave of cyberattacks has revealed the exploitation of Microsoft Internet Information Services...

Hackers Leveraging Image & Video Attachments to Deliver Malware

Cybercriminals are increasingly exploiting image and video files to deliver malware, leveraging advanced techniques...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

Autonomous LLMs Reshaping Pen Testing: Real-World AD Breaches and the Future of Cybersecurity

Large Language Models (LLMs) are transforming penetration testing (pen testing), leveraging their advanced reasoning...

Securing GAI-Driven Semantic Communications: A Novel Defense Against Backdoor Attacks

Semantic communication systems, powered by Generative AI (GAI), are transforming the way information is...

Cybercriminals Target IIS Servers to Spread BadIIS Malware

A recent wave of cyberattacks has revealed the exploitation of Microsoft Internet Information Services...