Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

August 2024

fidelis security

The Role of Network Forensics in Identifying Threats

Aug 30, 2024 By Srestha Roy In Fidelis Security
The outlook of cyber threats in this modern cyber warfare theater has changed a great deal. Annually, 60% businesses drop victims to data breaches and cyber-attacks. Security teams intrinsically find themselves in a scenario whereby they lack visibility and control of the network traffic and are incidentally unable to detect and respond in real-time. To this regard, modern cybersecurity strategies now incorporate network forensics into their arsenal of defenses.
Read Post
snapattack

Navigating the Future of SIEM Detections: Balancing Signature-Based and AI-Driven Approaches

Aug 29, 2024 By Tim Nary In SnapAttack
In the early days of cybersecurity, implementing a Security Information and Event Management (SIEM) system was akin to constructing a house from scratch. The SIEM was a blank slate, and transforming raw data into actionable insights was a long and arduous journey. It began with the daunting task of ingesting data from various disparate sources and formats. From there, security teams had to craft detections — rules designed to identify malicious or suspicious activity.
Read Post
securitysenses

How Proprietary Tools Enhance Cyber Threat Detection

Aug 27, 2024 By SecuritySenses In SecuritySenses
As the sophistication of cyber threats keeps rising, businesses and organizations need the most sophisticated set of tools to ensure they are well-prepared for potential attacks. Specialized vendors create proprietary tools as robust solutions for advanced cyber threat detection and response.
Read Post
securitysenses

Key Strategies for Strengthening Cybersecurity in 2024

Aug 21, 2024 By Pete Waldroop In SecuritySenses
Imagine a world where your online security is rock-solid, your data is as safe as a locked vault, and cyber threats can't get through. Sounds ideal, right? In 2024, this level of security is more achievable than ever. With the right strategies, including ensuring cybersecurity compliance, you can turn cybersecurity from a constant concern into one of your biggest strengths.
Read Post

FIN7 is Dead, Long Live FIN7 | Threat SnapShot

Aug 18, 2024 By SnapAttack In SnapAttack
FIN7 is dead… right? In this week’s Threat SnapShot we breakdown a SentinelOne report on the group FIN7. We focus on detection strategies for their latest tools, covering three main tools: Powertrash (an obfuscated PowerShell script for payload loading), a batch script for persistence, and AU Kill (an antivirus neutralizer). For each tool, we explain its function and offer specific detection methods.
View Video
Corelight

Corelight Announces Cloud Enrichment for AWS, GCP, and Azure

Aug 6, 2024 By Todd Morneau In Corelight
This week, I’m excited to announce Cloud Enrichment for AWS, GCP, and Azure. These enhancements are designed to accelerate incident response and unlock threat hunting capabilities by automatically combining the insights of your cloud network with the native control plane data from your cloud service provider.
Read Post

Turning Novel Threats into Detections Easily with SnapAttack

Aug 2, 2024 By SnapAttack In SnapAttack
Our CTO, Fred Frey, met with Teddy Powers from Google Cloud Security at the Google Massachusetts Ave Office to discuss the topic: "Turning Novel Threats into Detections Easily with SnapAttack." Discover how SnapAttack can integrate with Mandiant's threat intelligence, security validation, and Google Chronicle to enhance detection and create actionable workflows for your organization.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.