Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest News

Corelight

Corelight delivers static file analysis with YARA integration

Dec 11, 2024 By Christopher Sather In Corelight
Malicious files continue to be a significant threat to organizations; SonicWall reported more than six billion malware attacks in 2023. To help organizations prepare for and stay ahead of these threats, we’re introducing an integration with YARA that offers a deeper level of inspection for files across enterprise networks while helping security teams consolidate their toolset in the process.
Read Post
Corelight

How YARA rules can complement NDR for malware detection

Dec 10, 2024 By Cynthia Gonzalez In Corelight
The Verizon 2024 Data Breach Investigations Report found that system intrusion is the leading attack pattern for the third consecutive year, accounting for 36% of breaches. System intrusion largely consists of a threat actor using hacking techniques and malware to infiltrate the victim organization. Following a successful intrusion, the attacker continues on a multi-stage process: The longer an attacker remains undetected, the greater their opportunity to find a target and extract data.
Read Post
Corelight

It's Typhoon Season: Attackers are deliberately evading EDR. What can you do about it?

Dec 6, 2024 By Vince Stoffer In Corelight
Over the past year, several sophisticated cyber-espionage campaigns have grabbed the attention of our industry and challenged defenders and vendors alike with advanced tactics, techniques, and procedures (TTPs). One of the most visible campaigns is Volt Typhoon, named by the Microsoft threat intelligence team in May 2023 and attributed to Chinese state-sponsored threat actors.
Read Post
sweet security

Sweet Security Introduces Evolutionary Leap in Cloud Detection and Response, Releasing First Unified Detection & Response Platform

Dec 2, 2024 By Sweet Security
Sweet Security Introduces Evolutionary Leap in Cloud Detection and Response, Releasing First Unified Detection & Response Platform. With Sweet, customers can now unify detection and response for applications, workloads, and cloud infrastructure.
Read Post
securitysenses

Artificial Intelligence in Cybersecurity: Threat or Advantage?

Nov 25, 2024 By SecuritySenses In SecuritySenses
In today's hyperconnected world, cybersecurity stands as the first line of defense against the growing tide of cyber threats. With billions of devices connected globally, protecting sensitive information has never been more critical-or complex. Enter artificial intelligence (AI), a technological marvel capable of revolutionizing cybersecurity. But as with all powerful tools, AI is a double-edged sword. It holds incredible potential to bolster defenses yet can also amplify the capabilities of cybercriminals.
Read Post
Corelight

Reduce time to triage by up to 50% with Corelight's new Guided Triage capability

Nov 12, 2024 By David Getman In Corelight
Security Operations Centers (SOCs) are under immense pressure to ensure no attack goes unnoticed. At Corelight, we’re being approached daily to help bring in network visibility. For many though, visibility isn’t enough. SOCs are already overloaded and Tier 1 Analysts often lack network expertise. Modern network visibility has to be easy to use and designed for maximizing SOC efficiency. For that, we built Guided Triage.
Read Post
cato networks

Leveraging Custom IOC Feeds for Enhanced Threat Detection

Nov 6, 2024 By Andrea Napoli In Cato Networks
Indicators of Compromise (IOCs) are vital components in cybersecurity, representing digital clues or evidence that signal a potential security breach or malicious activity in a computer system or network. Think of them as the fingerprints left behind by cybercriminals during or after a cyber-attack. Examples of common IOCs are: Security teams use IOCs as red flags to identify and mitigate threats before they cause significant damage.
Read Post
securitysenses

The Role of Cloud Computing in Enhancing Cybersecurity

Nov 6, 2024 By SecuritySenses In SecuritySenses
Cloud computing revolutionizes how organizations approach data security and threat prevention. The transformation of traditional security measures into cloud-based solutions marks a significant shift in protecting sensitive information and maintaining business continuity.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.