Blog

Cado Security Unveils Memory Forensics For Enhanced Visibility and Context

We’re excited to announce the addition of memory forensics capabilities to the Cado Response platform. Cado’s mission is to take the complexity out of cloud investigations. The addition of memory acquisition, processing and analysis capabilities further empowers security teams to identify root cause, reduce risk and respond to breaches faster.

Read the full press release below:

Cado Security Unveils Cloud Memory Forensics For Enhanced Visibility and Context Across Data Breaches

New Capability Enables Security Teams to Fully Understand and Respond to Cyber Incidents at Cloud Speed

LONDON – August 3, 2021 – Cado Security, provider of the first and only cloud-native digital forensics platform, today announced the addition of memory acquisition, processing and analysis capabilities to its Cado Response platform. With Memory Forensics, security teams gain enhanced visibility and context to identify the root cause of incidents and respond to data breaches faster. Cado Security’s mission is to take the complexity out of cloud investigations. Empowering security experts with additional data sources and context is key to achieving this.

Many of today’s sophisticated hackers leverage techniques that run in memory only — such as fileless malware, rootkits and process hollowing — which leave no traces when data logs and host information are analyzed. If security teams aren’t able to capture evidence in memory, these attacks are extremely challenging to investigate. The Cado Response platform empowers security teams to investigate such attacks by automating memory capture and processing as soon as malicious activity is detected. Further, the Cado Response platform allows forensics experts to analyze memory alongside other critical data sources including disk information and cloud logs in a single pane of glass so they can easily grasp the full extent of what happened.

“The problem with memory-resident evidence is you need to capture the information exactly in the moment of malicious activity, or forfeit that valuable insight forever,” said Chris Doman, CTO and Co-Founder, Cado Security. “ By incorporating memory acquisition and processing capabilities directly in our Cado Response platform, security experts gain additional context and visibility into an attacker’s activities, further empowering them to investigate and respond to breaches at cloud speed.”

The Cado Response Platform empowers security professionals to quickly and precisely understand the root cause and impact of compromises. The platform automates data capture across cloud and container environments, while also supporting traditional, on-premises systems. Its patent-pending architecture scales up and down to provide rapid processing when needed, and save costs when not. Its analytics engine is powered by machine learning and threat intelligence to make investigations easier for analysts by adding context and awareness to the data. The Cado approach provides security teams with 100% of the data and information they need to respond to breaches faster.

To learn more around how Memory Forensics can help you respond to cyber incidents at cloud speed, register for our webinar on August 31 at 11:00am ET.

About Cado Security

Cado Security provides the first and only cloud-native digital forensics platform for enterprises. By automating data capture and processing across cloud and container environments, Cado Response enables security teams to efficiently investigate and respond to cyber incidents at cloud speed. Backed by Blossom Capital and Ten Eleven Ventures, Cado Security has offices in the United States and United Kingdom. For more information, please visit https://www.cadosecurity.com/ or follow us on Twitter @cadosecurity.

[1]According to the Australia Cyber Security Centre (ACSC), between 1 July 2019 and 30 June 2020, the ACSC responded to 2,266 cybersecurity incidents and received 59,806 cybercrime reports.