%term

Inside the SecOps Team at bet365: Moving your SIEM to the Cloud

Oct 12, 2022 By Matthias Maier In Splunk

Hello, I love to look behind the scenes of SecOps teams to learn how they operate. Recently I had the pleasure to work with John Eccleshare, Head of Compliance and Information Security, at bet365 as John took the stage at Gartner Security and Risk Summit in London.

Read Post

Splunk

Read more about Inside the SecOps Team at bet365: Moving your SIEM to the Cloud

Security Basics: Incident Response and Automation

Oct 11, 2022 By Kelsey Jones In Torq

Incident response is one of the most challenging tasks that IT teams face. It's challenging not just because it typically involves many stakeholders and moving pieces, but also because teams usually face pressure to respond as quickly as possible. That's why investing in incident response automation is a wise choice. Although it may not be possible to automate every aspect of every incident response workflow, being able to automate at least the major elements of incident response will yield incident management processes that are faster, more reliable, and more consistent.Keep reading to learn about the components of incident response and which incident response activities to start automating.

Read Post

Torq

Read more about Security Basics: Incident Response and Automation

CVE-2022-40684: Critical Remote Authentication Bypass Vulnerability in FortiOS & FortiProxy

Oct 7, 2022 By Steven Campbell In Arctic Wolf

Late Thursday, October 6, 2022, Fortinet disclosed a critical remote authentication bypass vulnerability —CVE-2022-40684— impacting FortiOS and FortiProxy. The vulnerability could allow a remote unauthenticated threat actor to obtain access to the administrative interface and perform operations via specially crafted HTTP or HTTPS requests.

Read Post

Arctic Wolf

Read more about CVE-2022-40684: Critical Remote Authentication Bypass Vulnerability in FortiOS & FortiProxy

Help Protect Seniors from Cyber Crime

Oct 7, 2022 By Arctic Wolf In Arctic Wolf

At Arctic Wolf, we see the dark side of the internet 24x7 while protecting our customers from cyber attacks. And we carry this knowledge home with us, understanding that our friends and family are also vulnerable, especially those older than 65.

View Video

Arctic Wolf

Read more about Help Protect Seniors from Cyber Crime

Threat Intelligence 101

Oct 7, 2022 By Sule Tatar In Arctic Wolf

You can’t protect your system if you don’t know where the vulnerabilities lie or what aspects of your security architecture are being targeted by threats. Intelligence is everything in security — it’s how CISO’s make large-scale operational decisions, how IT teams prioritize projects, and how responders restore and remediate a system during and after an incident.

Read Post

Arctic Wolf

Read more about Threat Intelligence 101

Cybersecurity Awareness Month: Why You Need To Use Strong Passwords

Oct 6, 2022 By Nathan Caldwell In Arctic Wolf

To kids, their Halloween candy stash might as well be a treasure chest. It is their most valuable possession and must remain hidden from pirates … or at least siblings dressed up like pirates. I grew up in a big family. With many kids in the house sharing the same love for Reese’s Peanut Butter Cups, I knew the value of my candy. I knew how important it was to keep it secure. I’d count the pieces multiple times a day.

Read Post

Arctic Wolf

Read more about Cybersecurity Awareness Month: Why You Need To Use Strong Passwords

Updated Guidance for Microsoft Exchange Zero-Day Vulnerabilities Exploited in the Wild

Oct 6, 2022 By Steven Campbell In Arctic Wolf

On Wednesday, October 5, 2022, Microsoft published updated mitigation guidance for two zero-day vulnerabilities in Microsoft Exchange Server: CVE-2022-41040 (SSRF vulnerability) and CVE-2022-41082 (RCE vulnerability). Arctic Wolf covered initial assessments on this blog post. Organizations that run Microsoft Exchange on-prem or in a hybrid model should complete both Microsoft provided mitigations to reduce the potential for successful exploitation.

Read Post

Arctic Wolf

Read more about Updated Guidance for Microsoft Exchange Zero-Day Vulnerabilities Exploited in the Wild

Additional Updated Guidance for Microsoft Exchange Zero-Day Vulnerabilities Exploited in the Wild

Oct 6, 2022 By Steven Campbell In Arctic Wolf

Late Wednesday, October 5, 2022, Microsoft published additional updated mitigation guidance for the two zero-day vulnerabilities in Microsoft Exchange Server that were exploited in the wild: CVE-2022-41040 (SSRF vulnerability) and CVE-2022-41082 (RCE vulnerability).

Read Post

Arctic Wolf

Read more about Additional Updated Guidance for Microsoft Exchange Zero-Day Vulnerabilities Exploited in the Wild

Keeping Your Organization Secure with Limited SOC Resources

Oct 5, 2022 By Mike Mackrory In Torq

Organizations face a growing threat from cybercriminals while struggling to find qualified security professionals who can protect their infrastructure and sensitive data. This blog will explore the concept of a Security Operations Center (SOC) and the role of SOC analysts in securing your organization. We will also discuss how your organization can leverage automation to improve SOC effectiveness and fill in the gaps when you cannot support a full staff of security professionals.

Read Post

Torq

Read more about Keeping Your Organization Secure with Limited SOC Resources

What Is Cybersecurity Awareness Month (NCSAM)?

Oct 5, 2022 By Nathan Caldwell In Arctic Wolf

Observed each October, National Cybersecurity Awareness Month (NCSAM) was first launched in a collaborative effort between the National Cyber Security Alliance (NCSA) and the U.S. Department of Homeland Security. Today, it continues to be an important collaboration between government and industry in the months up to and throughout October. Each year focuses on core themes to raise awareness about cybersecurity issues and explain what resources can help.

Read Post