|
By Sean Moran
A recent joint threat advisory from the FBI, CNMF, NSA (18 September 2024), highlights the extent of Chinese-affiliated threat actors’ ongoing botnet campaigns which seek to compromise thousands of internet-connected edge devices over a sustained period. This campaign, known as Oriole, is just one of several such active campaigns observed since 2020. JUMPSEC observations indicate that law enforcement has not yet disrupted the botnet, and indicators of compromise (IOCs) are likely ongoing.
|
By [email protected]
Supply chain attacks are a growing concern, particularly within the financial sector, with attackers increasingly using key technology suppliers as a ‘jumpbox’ to pivot into their intended target organisation. Last year’s MOVEit breach for instance saw a single ICT supplier ultimately cause ~2,356 organisations to be compromised, with primary victims predominantly in the financial sector.
|
By shiba
As cyber threats evolve, the importance of attack surface monitoring has never been clearer. In today’s interconnected world, businesses face an unprecedented level of exposure. From web applications and cloud infrastructure to employee credentials and third-party SaaS integrations, your digital footprint offers numerous entry points for potential attackers.
|
By shiba
The ability to manage and monitor your attack surface is no longer a luxury—it’s a necessity. The rapid expansion of networks, coupled with the shift to cloud computing and remote work, has created a vast and ever-changing attack surface that requires constant vigilance. This article delves into the most effective attack surface management tools and techniques, offering insights into how they can bolster your cyber security posture and safeguard your organisation against evolving threats.
|
By shiba
In today’s interconnected world, cyber threats continue to evolve at a rapid pace. As businesses grow more reliant on digital systems and services, the cyber security attack surface—the totality of an organisation’s digital exposure—has expanded, increasing the risks faced by security teams. The complex nature of these threats calls for a more adaptive and responsive approach to security, particularly in identifying and mitigating vulnerabilities before they can be exploited.
|
By shiba
There is a pressing need to protect an organisation’s digital assets against cyber attacks and it has never been more critical. The increasing complexity and dynamic nature of IT environments mean that traditional security measures often fall short. This has led to the emergence of new defensive approaches, such as attack surface management (ASM) that proactively safeguard against cyber threats.
|
By shiba
In the dynamic field of cybersecurity, two essential practices stand out: Ethical Hacking and Vulnerability Assessment. Both play critical roles in safeguarding digital assets, yet they serve different purposes and employ distinct methodologies. Understanding the differences, their place in cybersecurity, and when to deploy each tactic is crucial for maintaining a robust security posture.
|
By shiba
In today’s digital landscape, ensuring the security of both web applications and websites is paramount. As cyber threats become more sophisticated, organisations must employ robust security measures to protect their assets. Penetration Testing is a critical strategy used to identify vulnerabilities and strengthen defences. However, the approach to Penetration Testing can vary significantly between web applications and websites.
|
By shiba
In today’s rapidly evolving cybersecurity landscape, organisations must stay ahead of emerging threats and vulnerabilities to remain competitive. Two critical approaches to bolster security are Red Teaming and Penetration Testing. While these terms are often used interchangeably, they serve different purposes and employ distinct methodologies. Understanding the differences between Red Teaming and Penetration Testing is essential for implementing an effective cybersecurity strategy.
|
By JUMPSEC
As offensive security specialists for over 10 years, we have tested countless organisations who believe their SIEM, EDR or MDR provider offers them comprehensive defense, only to find them lacking in fundamental areas. From our experience, some “traditional” in-house, yet adequately resourced, Security Operations Centres (SOCs) can still provide a robust defense, while others struggle to stay on top of emerging threats.
|
By JUMPSEC
Head of CASM Bjoern Schwabe explains what is Continuous Attack Surface Management, and how is it different to traditional Attack Surface Management.
|
By JUMPSEC
The JUMSPEC Detection and Response Team talk about their journey with Microsoft Sentinel. Based on experiences taking this approach on with clients, the challenges they have faced and the solutions they pushed to address them.
|
By JUMPSEC
Inside Continuous Attack Surface Management - Bjoern Schwabe - Head of CASM, explains how we navigate data complexities, filter crucial insights and only true positives to secure your digital footprint. Through real-world examples, bridging the gap between technical intricacies and managerial understanding, gaining clarity on the vital role CASM plays in cybersecurity.
|
By JUMPSEC
A red teamer’s forecast – Cloudy with a chance of hacks Our adversarial simulation team will outline how attackers exploit cloud infrastructure and offer strategies to counter their efforts. Key insights involve recognising significant security risks in cloud adoption, including emerging attack vectors, comprehending hacker tactics in cloud settings, and swiftly implementing effective measures to safeguard cloud environments.
|
By JUMPSEC
Ransomware Update An insight into ransomware actor’s changing approaches focus on the issues and developments that matter most.
|
By JUMPSEC
A red teamer’s forecast – Cloudy with a chance of hacks Our adversarial simulation team will outline how attackers exploit cloud infrastructure and offer strategies to counter their efforts. Key insights involve recognising significant security risks in cloud adoption, including emerging attack vectors, comprehending hacker tactics in cloud settings, and swiftly implementing effective measures to safeguard cloud environments.
|
By JUMPSEC
Shifting perspectives in cyber security Our head of cyber security operations explains why evidence-based detections are critical to stopping attackers from achieving their actions and objectives earlier in the kill chain process.
|
By JUMPSEC
Head of Adversarial Simulation Max Corbridge explains what is purple teaming and why it is beneficial for organisation to conduct a purple team exercise.
|
By JUMPSEC
Our head of adversarial simulation, Max Corbridge explains what is a purple team exercise and the benefits to an organisation.
|
By JUMPSEC
Our Head of Adversarial Simulation, Max Corbridge explains what is Adversarial Simulation and why is it valuable in cyber security. And why today a point in time penetration test is not enough.
- October 2024 (3)
- September 2024 (5)
- August 2024 (3)
- July 2024 (2)
- June 2024 (4)
- March 2024 (1)
- February 2024 (1)
- January 2024 (6)
- November 2023 (1)
- October 2023 (2)
- August 2023 (1)
- June 2023 (1)
- May 2023 (1)
- April 2023 (2)
- March 2023 (1)
- January 2023 (3)
- December 2022 (2)
- November 2022 (3)
- October 2022 (1)
- September 2022 (1)
- August 2022 (6)
- February 2022 (2)
- November 2021 (1)
- September 2021 (1)
- August 2021 (1)
- July 2021 (1)
- May 2021 (2)
- April 2021 (1)
- March 2021 (1)
- September 2020 (1)
- May 2020 (5)
- February 2020 (1)
- January 2020 (4)
JUMPSEC’s mission is to change the way the organisations deal with security and enable organisations to use the security they have invested in to the fullest. Incrementally improving organisations cyber security protection year on year.
We offer a range of defined cyber security solutions to enable our clients to secure against cyber threats, and specialise in applying our broad cyber security capabilities to design and deliver custom projects and innovative solutions. The list below isn’t exhaustive and we regularly combine elements (and add new ones) to create custom solutions, solving unique challenges and realising specific outcomes for our clients.
Future proof your cyber defences and realise genuine improvement over time with offensive, defensive, and strategic cyber security solutions, delivering the outcomes you need by combating the threats you face.
- Offensive: Replicating real-world cyber threats, leveraging current threat intelligence to accurately and authentically simulate adversarial tactics, techniques and procedures.
- Defensive: Configuring, implementing, and tuning controls to build resilient network defences, high-fidelity detection, and effective response to combat even the most advanced attackers.
- Strategic: Applying best practices, policies, frameworks and standards to create effective cyber transformation programmes, balancing risk reduction with the cost of change.
Future proof your cyber defences and realise genuine improvement over time.