Barracuda Impersonation Protection (formerly Sentinel) combines artificial intelligence, deep integration with Microsoft Office 365, and brand protection into a comprehensive cloud-based solution that guards against business email compromise, account takeover, spear phishing and other cyber fraud.
Netsurion Open XDR collects the event logs delivered from the Barracuda Sentinel and seamlessly consolidates SIEM, Log Management, File Integrity Monitoring, machine analytics, and user behavior details.
The Netsurion Data Source Integration for Barracuda Sentinel allows to monitor the following components:
- Security – Provides alert details for specific malicious activities.
- Compliance – Provides detailed reports on respective events related to threats like spear phishing, account takeover, and more.
Integrate the Barracuda Sentinel into Netsurion Open XDR by using the syslog. After the Barracuda Sentinel forwards logs to Netsurion Manager via syslog, configure alerts, dashboards, and reports into Netsurion Open XDR.
The following are the key Data Source Integration available in Netsurion Open XDR.
|Security||Barracuda Sentinel – Threat detected||This alert is triggered when potentially malicious content or threat like spear phishing or account takeover are detected.|
|Security||Barracuda Sentinel – Suspicious user login detected||This alert is triggered when a suspicious user logon is detected based on the geo location logon patterns.|
|Security||Barracuda Sentinel – Account takeover attack activities||This report provides a detailed summary of all the account takeover alerts like suspicious login activities performed by the users, any inbox rule changes, and more. The report includes User information, IP address details, Logon location, and so on.|
|Security||Barracuda Sentinel – Spear phishing threat activities||This report provides a detailed summary of all the Barracuda Sentinel events related to spear phishing threat activities. The report includes sender details, recipient address, and more.|
The configuration details are consistent with Netsurion Open XDR 9.3 or later, and Barracuda Sentinel (Impersonation Protection).