July 2022

KNOTWEED Assessment Summary

Jul 29, 2022 By Andrew Pease In Elastic

On July 27, 2022, Microsoft Threat Intelligence Center (MSTIC) disclosed a private-sector offensive actor (PSOA) that is using 0-day exploits in targeted attacks against European and Central American victims. MSTIC and others are tracking this activity group as KNOTWEED. PSOAs sell hacking tools, malware, exploits, and services. KNOTWEED is produced by the PSOA named DSIRF.

Read Post

Elastic

Read more about KNOTWEED Assessment Summary

End to End Incident Response Using Elastic Security

Jul 7, 2022 By Elastic In Elastic

Join James Spiteri, PMM Director for Elastic Security, as he walks through an entire incident response scenario using several features of the Elastic Search platform including Security features such as SIEM, Endpoint Security, osquery, correlation and case management. Observability features such as logging and APM are also covered as part of this investigative workflow. Additional References.

View Video

Elastic

Read more about End to End Incident Response Using Elastic Security

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

July 2022

KNOTWEED Assessment Summary

End to End Incident Response Using Elastic Security

Monthly Archive

Follow Us