Splunk, a leading software platform for real-time Operational Intelligence, has acquired machine learning and behavioral analytic firm for approximately $190 million. Caspida has innovated the use of data science and machine-learning algorithms to detect advanced threats and malicious insiders. This combination of Splunk’s machine data platform with Caspida software is expected to provide a comprehensive security analytics solution, enabling faster response to security breach detection.
According to Splunk, recent high-profile breaches show virtually all attacks happen with compromised credentials, and automated detection leveraging machine learning is the future for detecting known and unknown threats from insider and external attackers. With the acquisition, Splunk customers will have access to out-of-the-box user behavioral analytics to help detect, respond to and mitigate these threats, said the company.
Haiyan Song, senior vice president of security markets, Splunk
With this acquisition, our customers can now also better detect advanced threats – the breaches that are becoming more complex and severe with each passing day. With Caspida, Splunk accelerates its focus on solving advanced threats – both external and from insiders – by shining a light on those who are wrongfully using valid credentials to freely and unpredictably exploit systems they have accessed. By addressing the entire lifecycle of known and unknown advanced threats, and by providing a platform to detect, respond to, and automate actions, Splunk has further reinforced its position as the security nerve center.
Muddu Sudhakar, CEO, Caspida
We founded Caspida with a vision of applying data science to help solve the most pressing cybersecurity challenges – advanced threats and insider threats. By analyzing machine data and using data science to detect meaningful anomalous behavior of users, devices and entities, Caspida has solved a problem that previously required significant manpower and expensive, do-it-yourself toolsets. We are very excited to join the Splunk family and deliver new detection capabilities to customers.