Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

splunk

Detecting Active Directory Kerberos Attacks: Threat Research Release, March 2022

May 11, 2022 By Splunk Threat Research Team In Splunk

The Splunk Threat Research Team recently developed a new analytic story, Active Directory Kerberos Attacks, to help security operations center (SOC) analysts detect adversaries abusing the Kerberos protocol to attack Windows Active Directory (AD) environments. In this blog post, we’ll describe some of the detection opportunities available to cyber defenders and highlight analytics from the analytic story.

Read Post
kroll

The Kroll Intrusion Lifecycle: Threat Actor Behavior from a Visual Perspective

May 11, 2022 By Kroll In Kroll

Across the thousands of cyber incidents that Kroll’s global team investigates every year, our experts are constantly on the hunt to spot established patterns of threat actor activity—and to discover new ones. In observing attack patterns, our experts discovered that threat actors like repeatability. Certain actors can be predictable not only in how they attack, but also in the tools and tactics they use once they have access.

Read Post
Zenity

Why Are Low-Code Platforms Becoming the New Holy Grail of Cyberattackers?

May 11, 2022 By Uriel Zilberberg In Zenity

Why Are Low-Code Platforms Becoming the New Holy Grail of Cyberattackers? Low-code/no-code platforms for enterprise are booming. With more and more critical business assets now stored and handled by these platforms, it is essential to understand that low-code often leads to a large attack surface. This article will explore low-code/no-code from an attacker’s perspective to better understand their potential weaknesses and showcase why they are becoming the new holy grail for cybercriminals.

Read Post
ssl2buy

PKI Management: Role of Certificate in PKI, Components, PKI Lifecycle Management

May 11, 2022 By Cyber Security Journal In SSL2BUY

Everyday life depends on the internet, from online banking to shopping online in this digital world. However, with the increase in the use of networking, cyber-crimes have also increased, which results in the stealing of sensitive data and the spreading of malicious software through unnatural links. Here comes the importance of Public Key infrastructure. PKI is based on data encryption which secures online data from cyber-attacks.

Read Post
Featured Post
crowdstrike

Proactive Threat Hunting Bears Fruit: Falcon OverWatch Detects Novel IceApple Post-Exploitation Framework

May 10, 2022 By Adrian Justice In CrowdStrike
The CrowdStrike Falcon OverWatch™ proactive threat hunting team has uncovered a sophisticated .NET-based post-exploitation framework, dubbed IceApple. Since OverWatch's first detection in late 2021, the framework has been observed in multiple victim environments in geographically distinct locations, with intrusions spanning the technology, academic and government sectors.
Read Post
nightfall

A Quick Guide To Information Security Programs

May 10, 2022 By Emily Heaslip In Nightfall

Broadly speaking, an information security program is a set of activities and initiatives that support a company’s information technology while protecting the security of business data and enabling the company to accomplish its business objectives. An information security program safeguards the proprietary information of the business and its customers. The Gramm-Leach-Bliley Act (GLBA) has a more specific definition of what a security information program should entail.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.