Security insights are a critical piece of a secure enterprise browsing solution. Integrating your chosen security solution with Chrome, made possible by Chrome Enterprise Connectors Framework, gives IT and security teams a birds-eye view of the potential threats users face on the web and make data-driven decisions in their security journey.

We’re pleased to share that the Chrome and CrowdStrike Falcon LogScale integration is now available in the Google Admin console in Chrome Browser Cloud Management. Organizations can now easily set up the integration to extract and analyze insights from security events within managed Chrome browsers. 

Available Security Events

  • Malware transfer

  • Password changed

  • Unapproved password reuse

  • Unsafe site visit

  • Log-in events

  • Password breaches 

  • Extension installs (coming soon)

  • Crash events (coming soon)

Enrolling machines in Chrome Browser Cloud Management

Getting started is easy. The first step is to make sure Chrome Browser Cloud Management is set up for your organization. This tool helps manage Chrome browser from a single, cloud-based Admin console across Windows, Mac, Linux, Android and iOS at no additional cost. This is the same console where IT teams can also manage Chrome OS. 

Check out this guide for steps on how to enroll your devices. Once you are done, or if you already have Chrome Browser Cloud Management in place, move to the steps below. 

Setup in CrowdStrike Falcon LogScale instance

  1. Log into your CrowdStrike Falcon LogScale instance. 

  2. You will need to create a new repository for your Google Chrome data. 

  3. Once you’ve created a new repository, under packages, click on the Marketplace section. 

  4. Search for Chrome, then install the CrowdStrike Falcon LogScale package for google/chrome-enterprise. When choosing the package, the README provides information about the package contents and other related information.

  5. After installing the package, under Ingest, click on Ingest tokens and click the Add token button. Give it a name and type in Chrome under the assigned parsers. 

  6. Select the Google_Chrome_Enterprise parser. Click on the eye icon to bring up the token value.

  7. Hit the copy button and save the token value, as you will be entering this into the admin console in the following section

Source link

Previous articleEmail Essentials – How email works, phishing, scams and more
Next articlePreventing Cryptocurrency Cyber Extortion


Please enter your comment!
Please enter your name here