Logging

Threat-Based Methodology: Auditing

Mar 28, 2022 By John Allison In Devo

This is the third post in the Threat-Based Methodology blog series. In the first post, we introduced Threat Based Methodology and the analysis conducted by the FedRAMP PMO and NIST. In that post, we ended by listing the top seven controls based on their Protection Value. The second post explored configuration settings in greater depth and explained how Devo supports the ability to meet the CM-6 control.

Read Post

Devo

Read more about Threat-Based Methodology: Auditing

Detect malicious activity in Okta logs with Falco and Sysdig okta-analyzer

Mar 25, 2022 By Stefano Chierici In Sysdig

On March 22, the hacking group Lapsus$ published a Twitter post with a number of screenshots taken from a computer showing “superuser/admin” access to various systems at authentication firm Okta that took place in January this year. Okta is a platform in the #1 platform in Identity-as-a-Service (IDaaS) category, which means that it manages access to internal and external systems with one login.

Read Post

Sysdig

Read more about Detect malicious activity in Okta logs with Falco and Sysdig okta-analyzer

Crowdstrike's Humio Platform Wins Data Technology Innovation Award for Log Analytics in 2022 Data Breakthrough Awards Program

Mar 24, 2022 By CrowdStrike In CrowdStrike

Prestigious International Awards Program Honors Humio as Outstanding Data Technology Product.

Read Post

CrowdStrike

Read more about Crowdstrike's Humio Platform Wins Data Technology Innovation Award for Log Analytics in 2022 Data Breakthrough Awards Program

SOC Automation: 3 Use Cases to Reduce Analyst Burnout

Mar 24, 2022 By Devo In Devo

As revealed in the 2021 Devo SOC Performance ReportTM — which is based on the results of a survey of more than 1,000 security practitioners — organizations are frustrated with their SOC’s lack of effectiveness in performing its vital work. To combat the concerns the survey identified, it’s important for SOCs to refine how they operate.

Read Post

Devo

Read more about SOC Automation: 3 Use Cases to Reduce Analyst Burnout

Gone in 52 Seconds...and 42 Minutes: A Comparative Analysis of Ransomware Encryption Speed

Mar 23, 2022 By Shannon Davis In Splunk

Do you feel like every other cybersecurity news story mentioned ransomware in 2021? Does it feel like you can’t turn on a cybersecurity podcast and not hear the “R” word? We feel the same way, and as a cybersecurity vendor, we felt that we should also contribute to the noise. :-) But we did want to try and do something different.

Read Post

Splunk

Read more about Gone in 52 Seconds...and 42 Minutes: A Comparative Analysis of Ransomware Encryption Speed

Coffee Talk with SURGe: 2022-MAR-022 Government Cyber Statements, Okta, WiCys, and a deep dive

Mar 23, 2022 By Splunk In Splunk

Bring a cup of coffee and tune in to join the SURGe security team for a recap of cybersecurity news and events, our 60-second charity challenge, and another topic deep dive!

View Video

Splunk

Read more about Coffee Talk with SURGe: 2022-MAR-022 Government Cyber Statements, Okta, WiCys, and a deep dive

Anomaly Detection: Robust Random Cut Forest chart

Mar 22, 2022 By Devo In Devo

Learn how to detect anomalies fast with the Robust Random Cut Forest chart.

View Video

Devo

Read more about Anomaly Detection: Robust Random Cut Forest chart

How to tell if you were attacked in the recent Okta security breach

Mar 22, 2022 By Yuval Khalifa In Coralogix

Today, Okta, a leading enterprise identity and access management firm, reported that it had launched an inquiry after the LAPSUS$ hacking group posted screenshots on Telegram.

Read Post

Coralogix

Read more about How to tell if you were attacked in the recent Okta security breach

Centralized Log Management and NIST Cybersecurity Framework

Mar 22, 2022 By Graylog Security Team In Graylog

It was just another day in paradise. Well, it was as close to paradise as working in IT can be. Then, your boss read about another data breach and started asking questions about how well you’re managing security. Unfortunately, while you know you’re doing the day-to-day work, your documentation has fallen by the wayside. As much as people are loathed to admit it, this is where compliance can help.

Read Post

Graylog

Read more about Centralized Log Management and NIST Cybersecurity Framework

Threat-Based Methodology: Configuration Settings

Mar 21, 2022 By John Allison In Devo

This is the second post in the Threat-Based Methodology series. The first post introduced Threat-Based Methodology and the analysis conducted by the FedRAMP PMO and NIST. That post concluded with a list of the top seven controls based on their Protection Value. This post will explore CM-6 in greater depth and explain how Devo supports the ability to meet this control. CM-6, Configuration Settings, was determined to provide the most Protection Value with a score of 208.86.

Read Post

Devo

Read more about Threat-Based Methodology: Configuration Settings

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Logging

Threat-Based Methodology: Auditing

Detect malicious activity in Okta logs with Falco and Sysdig okta-analyzer

Crowdstrike's Humio Platform Wins Data Technology Innovation Award for Log Analytics in 2022 Data Breakthrough Awards Program

SOC Automation: 3 Use Cases to Reduce Analyst Burnout

Gone in 52 Seconds...and 42 Minutes: A Comparative Analysis of Ransomware Encryption Speed

Coffee Talk with SURGe: 2022-MAR-022 Government Cyber Statements, Okta, WiCys, and a deep dive

Anomaly Detection: Robust Random Cut Forest chart

How to tell if you were attacked in the recent Okta security breach

Centralized Log Management and NIST Cybersecurity Framework

Threat-Based Methodology: Configuration Settings

Monthly Archive

Follow Us